Trojan.MalPack.GS

Short bio

Trojan.MalPack.GS is Malwarebytes’ generic detection name for the packed payload delivered by the Grandsoft Exploit Kit. This Trojan has been responsible for, among others, the delivery of Ransom.GandCrab.

Protection

Malwarebytes protects users from Trojan.MalPack.GS by using real-time protection.

block Trojan.MalPack.GS

Malwarebytes blocks Trojan.MalPack.GS

Remediation

Malwarebytes can detect and remove Trojan.MalPack.GS without further user interaction.

  1. Please download Malwarebytes to your desktop.
  2. Double-click mb3-setup-consumer-{version}.exe and follow the prompts to install the program.
  3. Then click Finish.
  4. Once the program has fully updated, select Scan Now on the Dashboard. Or select the Threat Scan from the Scan menu.
  5. If another update of the definitions is available, it will be implemented before the rest of the scanning procedure.
  6. When the scan is complete, make sure that all Threats are selected, and click Remove Selected.
  7. Restart your computer when prompted to do so.

Traces/IOCs

IPs:

92.63.197.60
92.63.197.48

Related blog content

Exploit kits: summer 2018 review

GandCrab ransomware distributed by RIG and GrandSoft exploit kits

Select your language