About “AIT:Trojan.Agent.EHNE” infection

The AIT:Trojan.Agent.EHNE is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What AIT:Trojan.Agent.EHNE virus can do?

• Executable code extraction
• Injection (inter-process)
• Injection (Process Hollowing)
• Presents an Authenticode digital signature
• Creates RWX memory
• Executed a process and injected code into it, probably while unpacking
• Anomalous binary characteristics

How to determine AIT:Trojan.Agent.EHNE?

File Info:
crc32: 705BAB36
md5: a54aba31c6a6629b55eced33b78819b6
name: setup.exe
sha1: 5fc9921a3a3050395945106f30ef15e7930a6b35
sha256: 50861a32d76cca863c1341825b4f4fff37904a9390e8b7f9d6abbad9c44ad201
sha512: 5b6913cc070af44cf20e1308cf74fbe5a45aa61ed63636b527d260d6549b5ead185e7eb698b1f91034ffa4cfede195f63278d1e9b7388e51f679ce33354cbdff
ssdeep: 24576:+u6Jx3O0c+JY5UZ+XC0kGso/WaTGqYLLSK1UgTWY:QI0c++OCvkGsUWaTGOY
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:
Translation: 0x0809 0x04b0

AIT:Trojan.Agent.EHNE also known as:

How to remove AIT:Trojan.Agent.EHNE?

• Download and install GridinSoft Anti-Malware.
• Open GridinSoft Anti-Malware and perform a “Standard scan“.
• “Move to quarantine” all items.
• Open “Tools” tab – Press “Reset Browser Settings“.
• Select proper browser and options – Click “Reset”.
• Restart your computer.