AIT:Trojan.Nymeria.179 removal guide

Malware Removal

The AIT:Trojan.Nymeria.179 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Review

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
6-day free trial available.

What AIT:Trojan.Nymeria.179 virus can do?

  • Unconventionial language used in binary resources: Chinese (Traditional)
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX
  • Network activity detected but not expressed in API logs

How to determine AIT:Trojan.Nymeria.179?


File Info:

crc32: 7991912D
md5: d35bdebb39aa0a9f446962711a3a5ab4
name: a1.exe
sha1: 59ddf88e1594e6e63dde6e3f8071d93f20130f76
sha256: 1138eb6b1d15f1a075e93e91e746a6031372343cbe05bcc89ae91273bc43d021
sha512: c4e8d33c2bf82bf27f85785051be0df049f2d438214d6d23ac32b238f54f0e8352033e3dd891d52c2f802d55ea339057d152c18bfa689a564a8d41fe3ba6d397
ssdeep: 24576:Dq5TfcdHj4f9cXyqOr1Q/Bso1OVSZRfnA9wTjE6LhpSI:DUTsa2iqORQ/BMYrAkjE6Lhpv
type: PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed

Version Info:

LegalCopyright: Copyright(c) 2015-2020
InternalName: ecic
FileVersion: 2020.5.0.0
CompanyName: x54a9x54a9x5de5x4f5cx5ba4
LegalTrademarks: x54a9x54a9x5de5x4f5cx5ba4
Comments: http://www.autoitscript.com/autoit3/
Productname: x54a9x54a9x8f14x52a9
ProductVersion: 2020
FileDescription: x54a9x54a9x8f14x52a9
OriginalFilename: a1.exe
Translation: 0x0404 0x04b0

AIT:Trojan.Nymeria.179 also known as:

MicroWorld-eScanAIT:Trojan.Nymeria.179
FireEyeGeneric.mg.d35bdebb39aa0a9f
BitDefenderAIT:Trojan.Nymeria.179
Cybereasonmalicious.b39aa0
BitDefenderThetaAI:Packer.5F7755B816
APEXMalicious
ClamAVWin.Trojan.Scar-7509404-0
GDataAIT:Trojan.Nymeria.179 (3x)
Kasperskynot-a-virus:HEUR:Downloader.Win32.Mengniu.vho
Endgamemalicious (moderate confidence)
Invinceaheuristic
EmsisoftAIT:Trojan.Nymeria.179 (B)
MicrosoftTrojan:Win32/Wacatac.C!ml
ArcabitAIT:Trojan.Nymeria.179
ZoneAlarmnot-a-virus:HEUR:Downloader.Win32.Mengniu.vho
Acronissuspicious
ALYacAIT:Trojan.Nymeria.179
MAXmalware (ai score=84)
FortinetW32/Autoit.P!tr
Ad-AwareAIT:Trojan.Nymeria.179

How to remove AIT:Trojan.Nymeria.179?

AIT:Trojan.Nymeria.179 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

Leave a Comment