Malware

What is “Jaik.283 (B)”?

Malware Removal

The Jaik.283 (B) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Jaik.283 (B) virus can do?

  • Uses Windows utilities for basic functionality
  • Unconventionial binary language: Chinese (Simplified)
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • A ping command was executed with the -n argument possibly to delay analysis
  • Deletes executed files from disk
  • Uses suspicious command line tools or Windows utilities
  • Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine Jaik.283 (B)?



File Info:

name: 3B17E4870C1DD30AE91C.mlw
path: /opt/CAPEv2/storage/binaries/26c0da2fd5c4359aa45581663c6592b40ad52e2f250c4c376d262ee9b67ea354
crc32: FDCBC5BF
md5: 3b17e4870c1dd30ae91cdb6b3bfa7629
sha1: 736c91ec8b6578753c55e8a2b057591c26a2f151
sha256: 26c0da2fd5c4359aa45581663c6592b40ad52e2f250c4c376d262ee9b67ea354
sha512: 5137e55f8c929cbfae57aa9cc711292a8baa481152446692d8353673740f10f068127822e7d1bb38e336a49a57b1377767f5ce52397c76f61d07a565e6ef12fc
ssdeep: 3072:VQvAB4RDxF+yQ/ra5SGnjJCmvDtc+OewU2yALHUrT2TQjqe07aVm0f4:iLxF+tW5SGnjjvDZJwEJ6Kq+Xw
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1E9A3E13216E50157E535163447E9A2FE3C7DEA2B0DCEB0B99B10FE365574B82B82E309
sha3_384: d6a91c14fe32c4ccc783877de6a6e99c14a3bcd8016d0b9940411bbac8ec5bbc3d58a62944d633150cacc21c99d8f70d
ep_bytes: 558bec6aff687051400068ac3d400064
timestamp: 2012-04-10 08:33:14


Version Info:

Comments: 
CompanyName: Jance网络工作室
FileDescription: Install
FileVersion: 1, 0, 0, 1
InternalName: Install
LegalCopyright: Copyright ? 2012
LegalTrademarks: 
OriginalFilename: Install.exe
PrivateBuild: 
ProductName: Jance网络工作室 Install
ProductVersion: 1, 0, 0, 1
SpecialBuild: 
Translation: 0x0804 0x04b0

Jaik.283 (B) also known as:

BkavW32.AIDetectMalware
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Jaik.283
FireEyeGeneric.mg.3b17e4870c1dd30a
ALYacGen:Variant.Jaik.283
VIPREGen:Variant.Jaik.283
SangforSuspicious.Win32.Save.ins
CrowdStrikewin/malicious_confidence_90% (D)
CynetMalicious (score: 100)
APEXMalicious
BitDefenderGen:Variant.Jaik.283
EmsisoftGen:Variant.Jaik.283 (B)
McAfee-GW-EditionBehavesLike.Win32.Generic.cc
Trapminemalicious.moderate.ml.score
MAXmalware (ai score=80)
ArcabitTrojan.Jaik.283
GDataGen:Variant.Jaik.283
Cylanceunsafe
RisingTrojan.Generic@AI.96 (RDML:uq1rX5zGaU726xkMqpZQkw)
MaxSecureTrojan.Malware.300983.susgen
BitDefenderThetaGen:NN.ZexaCO.36662.gq0@aOjzOZlb
Cybereasonmalicious.70c1dd
DeepInstinctMALICIOUS

How to remove Jaik.283 (B)?

Jaik.283 (B) removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment