Trojan

Should I remove “AIT:Trojan.Nymeria.4438”?

Malware Removal

The AIT:Trojan.Nymeria.4438 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What AIT:Trojan.Nymeria.4438 virus can do?

  • Uses Windows utilities for basic functionality
  • Access the NetLogon registry key, potentially used for discovery or tampering
  • Authenticode signature is invalid
  • Binary file triggered YARA rule
  • Yara detections observed in process dumps, payloads or dropped files

How to determine AIT:Trojan.Nymeria.4438?



File Info:

name: AB8B86B3DCEC224724F2.mlw
path: /opt/CAPEv2/storage/binaries/84644aff29c922030767e3b549bb33390264e9d5447cfd9c389e9837ba718a68
crc32: 3A24AD74
md5: ab8b86b3dcec224724f2ce91b0828333
sha1: 0f47885f68cc12b5640e63ce0f1c520e24cdcf6a
sha256: 84644aff29c922030767e3b549bb33390264e9d5447cfd9c389e9837ba718a68
sha512: 05a0c6e74b103acd56430d475f03163923249f7099013b845fea4da2c239da68ed69b72f1d90ba40889ca982a7afefd31b427f65f4e0d1e22ea435c5f83cd671
ssdeep: 24576:Otb20pkaCqT5TBWgNQ7amSF7phI6PZCb6A:7Vg5tQ7amShpyKZE5
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T14725BF1273DE8361C3B25273BA25B741BEBF782506B5F56B2FD4093DE920122521EA73
sha3_384: 06331714147a28dd435c2532dd182d4f85503080eb9e5de2fe592db20e9de9266c1aaa58a464332620ab0b1a0b17c60f
ep_bytes: e86ace0000e97ffeffffcccc57568b74
timestamp: 2018-12-21 14:32:07


Version Info:

Translation: 0x0809 0x04b0

AIT:Trojan.Nymeria.4438 also known as:

BkavW32.AIDetectMalware
LionicTrojan.Win32.Nymeria.4!c
MicroWorld-eScanAIT:Trojan.Nymeria.4438
FireEyeAIT:Trojan.Nymeria.4438
SkyhighBehavesLike.Win32.Injector.dh
ALYacAIT:Trojan.Nymeria.4438
Cylanceunsafe
Paloaltogeneric.ml
APEXMalicious
TrendMicro-HouseCallTROJ_GEN.R002H09A424
BitDefenderAIT:Trojan.Nymeria.4438
EmsisoftAIT:Trojan.Nymeria.4438 (B)
VIPREAIT:Trojan.Nymeria.4438
ArcabitAIT:Trojan.Nymeria.D1156 [many]
GDataAIT:Trojan.Nymeria.4438 (2x)
McAfeeArtemis!AB8B86B3DCEC
VBA32Trojan.Autoit.F
MalwarebytesMachineLearning/Anomalous.96%
MAXmalware (ai score=84)
MaxSecureTrojan.Malware.185135956.susgen
DeepInstinctMALICIOUS

How to remove AIT:Trojan.Nymeria.4438?

AIT:Trojan.Nymeria.4438 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment