Malware

Should I remove “Jaik.102473”?

Malware Removal

The Jaik.102473 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Jaik.102473 virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Sample contains Overlay data
  • Presents an Authenticode digital signature
  • CAPE extracted potentially suspicious content
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid
  • Anomalous binary characteristics
  • Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine Jaik.102473?



File Info:

name: C7F119AF6F7D926AD6B4.mlw
path: /opt/CAPEv2/storage/binaries/446a8623080bdc1a57e8ce91ad913a24e350c1369cb29c212fa77ae08918a538
crc32: 81124620
md5: c7f119af6f7d926ad6b4a5f7360750e6
sha1: 22e1e7628ec066bf6ced6090a67e384710c0adca
sha256: 446a8623080bdc1a57e8ce91ad913a24e350c1369cb29c212fa77ae08918a538
sha512: 8777e004da571b9e37e03c2ef713515cec5ad5891e4456040b7a41ffc8958701d10bb1b9cce2d34f5c33ee0268f4af9133e1eeb1ba4ed727a1d407cda886777e
ssdeep: 24576:+XcJweYFag3rnG5JTgvA5Z/BOqtrGVUasRZGXcA/g:ic2hGyCkUp0Bg
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T1D58525801E5EFE26DC28007527AFBA780B86457CEF6989F73D5858797A87CD600F2349
sha3_384: ed6f035cf5d6637ba62bfcbf26452ed0541e87e0862eba7cf38c6687cf062c55ca70c79365e26463b1a1c9001c99a0b2
ep_bytes: e9d0241800e959241800e9e4301800e9
timestamp: 2023-05-20 06:53:39


Version Info:

CompanyName: Hongfeng Hengyu (Beijing) Tech Ltd.
FileDescription: Fancy3D Developer Tool
FileVersion: 0,16,0830,1559
LegalCopyright: Copyright (C) Hongfeng Hengyu 2009 - 2015. All rights reserved.
ProductName: Fancy3D Developer Tool
ProductVersion: 0,16,0830,1559
Translation: 0x0409 0x04b0

Jaik.102473 also known as:

Elasticmalicious (moderate confidence)
KasperskyVHO:Trojan.Win64.Shlem.gen
BitDefenderGen:Variant.Jaik.102473
MicroWorld-eScanGen:Variant.Jaik.102473
EmsisoftGen:Variant.Jaik.102473 (B)
VIPREGen:Variant.Jaik.102473
FireEyeGeneric.mg.c7f119af6f7d926a
ArcabitTrojan.Jaik.D19049
ZoneAlarmVHO:Trojan.Win64.Shlem.gen
GDataGen:Variant.Jaik.102473
VBA32BScope.Trojan.Wacatac
ALYacGen:Variant.Jaik.102473
MAXmalware (ai score=81)
DeepInstinctMALICIOUS

How to remove Jaik.102473?

Jaik.102473 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment