Malware

Jaik.76232 information

Malware Removal

The Jaik.76232 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Jaik.76232 virus can do?

  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • Sample contains Overlay data
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • Guard pages use detected – possible anti-debugging.
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid
  • Anomalous binary characteristics

How to determine Jaik.76232?



File Info:

name: 71C03F39A6C72D78C7C4.mlw
path: /opt/CAPEv2/storage/binaries/e0af9034174ecbb5943d562e6fb782f82340fe7e95f4cf9206ed11ac03f39309
crc32: 4C76FEDF
md5: 71c03f39a6c72d78c7c46a597e665385
sha1: 680aa9050e2ff4e07edb896b3cb976ef9b85c5cb
sha256: e0af9034174ecbb5943d562e6fb782f82340fe7e95f4cf9206ed11ac03f39309
sha512: eb69f14ea3c91fe5e29e0d268668d43794947f30c5d803112a120f304721d43c9f7bed07fd94c324b714b068dc545b0847da059d9f67ad6b78536555f759095f
ssdeep: 12288:GAhPSmJhy9/NsekWgn1IvuIZD0w4U9IBJK93f0ZNoeJlIOWd:/PSmJhy9/NTkhn1IWIZD0wx6493f0Z3M
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T165E47D05FAA7C2B9C0571C70205FA236FA33791D81354F87FFF56E68B66B701660AA06
sha3_384: 852896aec697e48a31dfc9799b1bb9ba7069cea8063fdb06c6a69811fb4e19f0c034bd489652458376f5c705df212450
ep_bytes: c7057c614a0001000000e9b1fcffff90
timestamp: 1970-01-01 00:00:00


Version Info:

0: [No Data]

Jaik.76232 also known as:

Elasticmalicious (high confidence)
CynetMalicious (score: 100)
CylanceUnsafe
CrowdStrikewin/malicious_confidence_60% (D)
SymantecML.Attribute.HighConfidence
APEXMalicious
KasperskyHEUR:Trojan-Ransom.Win32.Generic
BitDefenderGen:Variant.Jaik.76232
MicroWorld-eScanGen:Variant.Jaik.76232
AvastWin32:RansomX-gen [Ransom]
Ad-AwareGen:Variant.Jaik.76232
VIPREGen:Variant.Jaik.76232
FireEyeGen:Variant.Jaik.76232
EmsisoftGen:Variant.Jaik.76232 (B)
GDataGen:Variant.Jaik.76232
AviraHEUR/AGEN.1250038
ArcabitTrojan.Jaik.D129C8
ZoneAlarmHEUR:Trojan-Ransom.Win32.Generic
MicrosoftRansom:Win64/Hive.E
ALYacGen:Variant.Jaik.76232
MAXmalware (ai score=86)
MalwarebytesMalware.AI.326103902
RisingTrojan.Generic@AI.88 (RDMK:cmRtazq/b8lSXPikM1TMHl/vNZ/W)
BitDefenderThetaGen:NN.ZexaF.34582.QKX@aeyUyzf
AVGWin32:RansomX-gen [Ransom]

How to remove Jaik.76232?

Jaik.76232 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment