Malware

Should I remove “Jaik.45301”?

Malware Removal

The Jaik.45301 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware - Review 2020

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
6-day free trial available.

What Jaik.45301 virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • CAPE extracted potentially suspicious content
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • A ping command was executed with the -n argument possibly to delay analysis
  • Uses Windows utilities for basic functionality
  • Installs WinPCAP

How to determine Jaik.45301?


File Info:

name: 3C0A9B55AC6FF555AB9A.mlw
path: /opt/CAPEv2/storage/binaries/972bfacf17d21f38d8e200ef04430d7c41ac85ceb31f0ecaf3d40f04eb2afa77
crc32: 5DB7FF83
md5: 3c0a9b55ac6ff555ab9a6690c4b3fc8f
sha1: 89dbf14b7c18941edb54cf029badcaa2dfb2d7d3
sha256: 972bfacf17d21f38d8e200ef04430d7c41ac85ceb31f0ecaf3d40f04eb2afa77
sha512: 358cde7fcb885fe0e0dc08538867b1dcbdfa429c59555237b1905d6aa081df5480d0cabba10bac44cc50695176f2449dcf09dc0d9a12364f81289097dd747467
ssdeep: 3072:MU7jL0gkRkQDW694wCylVQzp2Gkj2drNUrXKbTAK7ewt1Lpuqnhf9Zd8pE8Xi4YH:nXL0hkM4wCyvAUrXmAK7ewt1Lp/f9Z6Y
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1FE0422CDDDB3C58DDDD0A9761C499E2D7035DB8E9EC40BD08BC4022FB4A63B6A18A364
sha3_384: 09cf3fb9c5dc2ff3df1225197a97b158dab6d14c6e8442d186d213eb1f9f5c478a53501ed101fbe9d42f0e3242c4bb24
ep_bytes: 60be008045008dbe0090faff5789e58d
timestamp: 2012-03-12 12:28:46

Version Info:

0: [No Data]

Jaik.45301 also known as:

LionicHacktool.Win32.Agent.lnAt
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Jaik.45301
FireEyeGeneric.mg.3c0a9b55ac6ff555
CAT-QuickHealW32.PePatch.A4
ALYacGen:Variant.Jaik.45301
CylanceUnsafe
ZillyaTrojan.Inject.Win32.34418
SangforSuspicious.Win32.Save.a
AlibabaRiskWare:Win32/Inject.eab2a0b3
Cybereasonmalicious.5ac6ff
BaiduWin32.Trojan.Spoofer-ARP.a
CyrenW32/S-99401c6b!Eldorado
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/Spoofer.ARP.B
APEXMalicious
Paloaltogeneric.ml
CynetMalicious (score: 100)
KasperskyTrojan.Win32.Inject.dgan
BitDefenderGen:Variant.Jaik.45301
NANO-AntivirusTrojan.Win32.Inject.ezccre
AvastWin32:Evo-gen [Trj]
TencentWin32.Trojan.Inject.Hkjl
Ad-AwareGen:Variant.Jaik.45301
SophosML/PE-A + Troj/Agent-TPX
ComodoTrojWare.Win32.Spoofer.ARP@4q6ijk
DrWebTrojan.Sniff
VIPREGen:Variant.Jaik.45301
TrendMicroTROJ_AGENT_010175.TOMB
McAfee-GW-EditionBehavesLike.Win32.HLLP.cc
Trapminemalicious.high.ml.score
EmsisoftGen:Variant.Jaik.45301 (B)
SentinelOneStatic AI – Malicious PE
JiangminTrojan.Inject.apzz
WebrootW32.Trojan.Gen
AviraTR/Dropper.Gen
MAXmalware (ai score=100)
Antiy-AVLTrojan/Generic.ASMalwS.77
MicrosoftTrojan:Win32/Wacatac.B!ml
ArcabitTrojan.Jaik.DB0F5
GDataGen:Variant.Jaik.45301
GoogleDetected
AhnLab-V3Trojan/Win32.Frethoq.R10591
McAfeeNetSniff.b
VBA32Trojan.CLR.1805
MalwarebytesMalware.Heuristic.1003
TrendMicro-HouseCallTROJ_AGENT_010175.TOMB
RisingTrojan.Win32.Generic.12BA7F9E (C64:YzY0OkqrT1SZGAXM)
YandexTrojan.GenAsa!ZGMy7GqdEoc
IkarusWorm.Win32.AutoRun
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/Geral.AIS!tr
BitDefenderThetaAI:Packer.969A3ACC1F
AVGWin32:Evo-gen [Trj]
PandaGeneric Malware
CrowdStrikewin/malicious_confidence_90% (W)

How to remove Jaik.45301?

Jaik.45301 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment