Corona Antivirus – Infected victims added to BlackNET Backdoor

by Brendan Smith
February 17, 2021
Corona Antivirus
Corona Antivirus
Written by Brendan Smith
Fake “Corona Antivirus” distributes BlackNET backdoor (Remote Administration Tool).
GridinSoft Anti-Malware Review
It is better to prevent, than repair and repent!
Removing adware and PUPs manually may take hours and may damage your PC in the process. I recommend you to download GridinSoft Anti-Malware for threats removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
Gridinsoft Anti-Malware 6-day trial available.
EULA | Privacy Policy | 10% Off Coupon
Subscribe to our Telegram channel to be the first to know about news and our exclusive materials on information security.

What is Corona Antivirus?

Corona Antivirus by antivirus-covid19 can be correctly summarized as a BlackNET Backdoor.

Corona Antivirus is a BlackNET Backdoor. I found this scam via a website (antivirus-covid19.site) advertising “Corona Antivirus -World’s best protection.” That’s funny, cyber criminals are trying to get you to install a computer antivirus that supposedly protects against the actual COVID-19 virus infecting people.

Corona antivirus: 100% fake

Corona antivirus: 100% fake

Corona Antivirus Technical Summary.

Name Corona Antivirus
Vendor antivirus-covid19
Type BlackNET Backdoor
Detection Name Backdoor.BlackNet
Short Description BlackNET Backdoor. Developed by antivirus-covid19.site and targeted at Windows OS.
Distribution Method Spam
Files update.exe

Typical channels for Corona Antivirus infiltration.

There is a chance to download and install Corona Antivirus directly from its main websites, nevertheless, I really doubt that this will certainly be your choice. Most often, the application is spread out through intrusive advertisements produced by some adware, or via bundling with other free programs, whereas the information concerning the extra software is often not completely disclosed.

Thus, it is compulsory that you completely take a look at the license agreements and installation milestones during the setup steps of any kind of free program downloaded and install online.

If you have a choice to choose the “Advanced” or “Custom” installation then ensure you use this option to stop unauthorized installations.

Upon installing Corona Antivirus, your PC will be infected with backdoor. The file, packed with the commercial packer Themida turns your computer into a botnet. And now your device ready to receive commands from criminals:

instaboom-hello[.]site/connection.php
instaboom-hello[.]site/getCommand.php
instaboom-hello[.]site/receive.php

The C&C Server of Corona Antivirus placed at instaboom-hello[.]site reveals the control panel for the BlackNET botnet.

How to remove Corona Antivirus Backdoor?

Unwanted application has ofter come with other viruses and spyware. This threats can steal account credentials, or crypt your documents for ransom.
Reasons why I would recommend GridinSoft1

The is an excellent way to deal with recognizing and removing threats – using Gridinsoft Anti-Malware. This program will scan your PC, find and neutralize all suspicious processes.2.

Download GridinSoft Anti-Malware.

You can download GridinSoft Anti-Malware by clicking the button below:

Download GridinSoft Anti-Malware

Run the setup file.

When setup file has finished downloading, double-click on the setup-antimalware-fix.exe file to install GridinSoft Anti-Malware on your system.

Run Setup.exe

An User Account Control asking you about to allow GridinSoft Anti-Malware to make changes to your device. So, you should click “Yes” to continue with the installation.

GridinSoft Anti-Malware Setup

Press “Install” button.

GridinSoft Anti-Malware Install

Once installed, Anti-Malware will automatically run.

GridinSoft Anti-Malware Splash-Screen

Wait for the Anti-Malware scan to complete.

GridinSoft Anti-Malware will automatically start scanning your system for Corona Antivirus files and other malicious programs. This process can take 5-10 minutes, so I suggest you periodically check on the status of the scan process.

GridinSoft Anti-Malware Scanning

Click on “Clean Now”.

When the scan has finished, you will see the list of infections that GridinSoft Anti-Malware has detected. To remove them click on the “Clean Now” button in the right corner.

GridinSoft Anti-Malware Scan Result

Are Your Protected?

GridinSoft Anti-Malware will scan and clean your PC for free in the trial period. The free version offer real-time protection for first 2 days. If you want to be fully protected at all times – I can recommended you to purchase a full version:

Full version of GridinSoft

Full version of GridinSoft Anti-Malware

If the guide doesn’t help you to remove Corona Antivirus Backdoor you can always ask me in the comments for getting help.

Sending
User Review
0 (0 votes)
Comments Rating 0 (0 reviews)

References

  1. GridinSoft Anti-Malware Review from HowToFix site: https://howtofix.guide/gridinsoft-anti-malware/
  2. More information about GridinSoft products: https://gridinsoft.com/comparison

About the author

Brendan Smith

I'm Brendan Smith, a passionate journalist, researcher, and web content developer. With a keen interest in computer technology and security, I specialize in delivering high-quality content that educates and empowers readers in navigating the digital landscape.

With a focus on computer technology and security, I am committed to sharing my knowledge and insights to help individuals and organizations protect themselves in the digital age. My expertise in cybersecurity principles, data privacy, and best practices allows me to provide practical tips and advice that readers can implement to enhance their online security.

View all posts

One Response

  1. NA August 12, 2020

    Never heard of thous acronyms and don know what they mean.

    Reply

Leave a Reply

Sending