Malware

About “Generik.IXGATAQ” infection

Malware Removal

The Generik.IXGATAQ is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Generik.IXGATAQ virus can do?

  • Executable code extraction
  • Attempts to connect to a dead IP:Port (1 unique times)
  • Creates RWX memory
  • Collects information to fingerprint the system
  • Anomalous binary characteristics

How to determine Generik.IXGATAQ?



File Info:

crc32: 21D96425
md5: be54e5e4bf9a06a4dcd2e4cf08eb09eb
name: BE54E5E4BF9A06A4DCD2E4CF08EB09EB.mlw
sha1: 58497f012f1f53f35beffde9615ac6d9463875b7
sha256: d25a1b13277214a402b4182a4d8c432c711a049d3ce1c0e8b71913aeb496d464
sha512: aaf83faf966ec20fd55f32d7b78dd93b4ce2e6a5ec669ad9c69e50d4970df091305c03cca905e0f7438d7fbdab9385c319397be4457af5ed309648080b5fca6d
ssdeep: 6144:vvH3ovIf4pmSiiH1ZktuukxwPZQMsI5TL6cHjFy4y6y:+VpFzkUuaUCMsIScHx7y
type: PE32 executable (GUI) Intel 80386 (stripped to external PDB), for MS Windows


Version Info:

LegalCopyright: Copyright (C) 2013 Nero AG and its licensors
InternalName: NeroDisc
FileVersion: 15,0,25,0
CompanyName: Nero AG
PrivateBuild: 
LegalTrademarks: 
Comments: 
ProductName: NeroDiscMergeWrongDisc
SpecialBuild: 15,0,25,0
ProductVersion: 15,0,25,0
FileDescription: NeroDiscMergeWrongDisc Application
OriginalFilename: NeroDiscMergeWrongDisc.exe
Translation: 0x0409 0x04e4

Generik.IXGATAQ also known as:

BkavW32.AIDetect.malware1
K7AntiVirusTrojan ( 0051e08e1 )
Elasticmalicious (high confidence)
DrWebTrojan.Encoder.19399
CynetMalicious (score: 99)
CAT-QuickHealDownldr.Freepds.MUE.ZZ5
ALYacTrojan.Ransom.GenericKD.43360798
CylanceUnsafe
ZillyaTrojan.Generic.Win32.1062630
SangforTrojan.Win32.Save.a
CrowdStrikewin/malicious_confidence_90% (W)
AlibabaRansom:Win32/Tovicrypt.69b289e3
K7GWTrojan ( 0051e08e1 )
Cybereasonmalicious.4bf9a0
CyrenW32/S-2af32512!Eldorado
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Generik.IXGATAQ
APEXMalicious
AvastWin32:Goblinek [Inf]
KasperskyHEUR:Trojan.Win32.Generic
BitDefenderTrojan.Ransom.GenericKD.43360798
NANO-AntivirusTrojan.Win32.Encoder.evrmps
MicroWorld-eScanTrojan.Ransom.GenericKD.43360798
TencentWin32.Trojan.Generic.Phqa
Ad-AwareTrojan.Ransom.GenericKD.43360798
SophosML/PE-A + Mal/Swizzor-D
ComodoMalware@#3ledjo4kkfb97
BitDefenderThetaGen:NN.ZexaF.34722.wy0@aWLYYIqi
VIPRETrojan.Win32.Generic!BT
TrendMicroMal_Crypmic-1
McAfee-GW-EditionRansomware-GJA!BE54E5E4BF9A
FireEyeGeneric.mg.be54e5e4bf9a06a4
EmsisoftTrojan.Ransom.GenericKD.43360798 (B)
SentinelOneStatic AI – Suspicious PE
JiangminTrojan.Generic.fmxnq
AviraHEUR/AGEN.1110705
eGambitUnsafe.AI_Score_100%
Antiy-AVLTrojan/Generic.ASMalwS.22EF7FE
MicrosoftRansom:Win32/Tovicrypt.A
ArcabitTrojan.Ransom.Generic.D295A21E
AegisLabTrojan.Win32.Generic.4!c
GDataTrojan.Ransom.GenericKD.43360798
Acronissuspicious
McAfeeRansomware-GJA!BE54E5E4BF9A
MAXmalware (ai score=100)
VBA32BScope.Trojan.Bagsu
MalwarebytesMachineLearning/Anomalous.100%
PandaTrj/GdSda.A
TrendMicro-HouseCallMal_Crypmic-1
RisingTrojan.Generic@ML.100 (RDML:qrhHBd2uWU7tWGJwQUkEzg)
YandexTrojan.GenAsa!/Jktgqz9N7U
IkarusTrojan-Ransom.Tovicrypt
FortinetW32/Kryptik.FNZR!tr
AVGWin32:Goblinek [Inf]
Paloaltogeneric.ml

How to remove Generik.IXGATAQ?

Generik.IXGATAQ removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment