Should I remove “Jaik.156925”?

The Jaik.156925 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Jaik.156925 virus can do?

Authenticode signature is invalid
Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine Jaik.156925?


File Info:
name: 5D7280305C440981427C.mlw
path: /opt/CAPEv2/storage/binaries/a6f214a3ed97ecea5cc81d793db9e0ab44fba545bc7f4aae01aa06f32af4a237
crc32: AF2094BB
md5: 5d7280305c440981427c7dffc545dc3c
sha1: b6e41a19f6386cb7961cb1d7ba59ab845d15f3be
sha256: a6f214a3ed97ecea5cc81d793db9e0ab44fba545bc7f4aae01aa06f32af4a237
sha512: d8a942eea564b994eb4c65dabed0f8d066c8c4e9379cdecb87407336d37411cf34ae4935f2944d2dd8ab9151a1dad0e4792f0a72be8751f142c0708ccd4e9b23
ssdeep: 24576:ZztGegqoeR+299IXfWe3ZBExMnftGNroiZ5B7/yhnVOcAfDQn652MOaSt:B0XfdWWGG
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T14C655B81FAC366A2CD4B1AB5301FB327E7311909431DDFE3CBE49E71B8663925C69948
sha3_384: 867e6285432801f368a13110e3a870965e905bca394d57c0d9361272bb8606dc762951d4ed0c0e41176c45a88524d45c
ep_bytes: e839050000e974feffffcccccccccccc
timestamp: 2023-07-27 11:41:47

Version Info:
ProductVersion: 1.0.0
FileDescription: installer
OriginalFilename: installer.exe
FileVersion: 1.0.0
ProductName: installer
Translation: 0x0000 0x04b0

Jaik.156925 also known as:

Elastic	malicious (high confidence)
MicroWorld-eScan	Gen:Variant.Jaik.156925
FireEye	Gen:Variant.Jaik.156925
Skyhigh	BehavesLike.Win32.Rootkit.th
ALYac	Gen:Variant.Jaik.156925
Malwarebytes	Trojan.Crypt
VIPRE	Gen:Variant.Jaik.156925
Sangfor	Trojan.Win32.Agent.V9mv
K7AntiVirus	Trojan ( 005a8e431 )
BitDefender	Gen:Variant.Jaik.156925
K7GW	Trojan ( 005a8e431 )
Cybereason	malicious.9f6386
BitDefenderTheta	Gen:NN.ZexaF.36792.zv0@auToQqci
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win32/GenKryptik_AGen.AFR
APEX	Malicious
Alibaba	Trojan:Win32/GenKryptik.238727b4
Rising	Trojan.Generic@AI.95 (RDML:07VvqRabmYAONe2LvY4S8A)
F-Secure	Trojan.TR/Kryptik.kuvmf
Trapmine	malicious.moderate.ml.score
Emsisoft	Gen:Variant.Jaik.156925 (B)
Ikarus	Backdoor.RAT.ConnectWise
Google	Detected
Avira	TR/Kryptik.kuvmf
Microsoft	Trojan:Win32/Wacatac.B!ml
Arcabit	Trojan.Jaik.D264FD
GData	Gen:Variant.Jaik.156925
AhnLab-V3	Trojan/Win.Generic.C5468239
MAX	malware (ai score=89)
DeepInstinct	MALICIOUS
Cylance	unsafe
Panda	Trj/Genetic.gen
TrendMicro-HouseCall	TROJ_GEN.R002H09GR23
Tencent	Win32.Trojan.Kryptik.Iflw
MaxSecure	Trojan.Malware.215159951.susgen
Fortinet	W32/GenKryptik_AGen.AFR!tr
AVG	Win32:CrypterX-gen [Trj]
Avast	Win32:CrypterX-gen [Trj]

How to remove Jaik.156925?

Jaik.156925 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X