Malware

Jaik.80152 information

Malware Removal

The Jaik.80152 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Jaik.80152 virus can do?

  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX
  • Authenticode signature is invalid
  • Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine Jaik.80152?



File Info:

name: 5B7E881AC6D8E2A6A420.mlw
path: /opt/CAPEv2/storage/binaries/547d7ae1e689b70d4d7e52e80b475a322170800e69f6b833aa5fbde834b38d26
crc32: 641D4C96
md5: 5b7e881ac6d8e2a6a420efa601f5cda1
sha1: a752484b3a42a4240f9b2945bc2659607bd5aa32
sha256: 547d7ae1e689b70d4d7e52e80b475a322170800e69f6b833aa5fbde834b38d26
sha512: 32e10ba2fb29ed8244a281f3e3bee9be8494cb44e82c010ea8f2c911975a6d4857983f87a4a1d163c37aeeef6096399650a705c80afca49d302f84db8fc004de
ssdeep: 98304:++S9bgPXjE49Y1E4FgbZGbhPQcaUz0LWK+lHwCeGV6uVP49HpSK98UV:lMcPTAFgbouJWK+BOGguVuJSKGUV
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T12346333BD144A9CDDE8213BCAC7A9C414841E73890250D375AA8327FBF25794CE796AF
sha3_384: e85c4d887a3da5c6f74980008b09ea161625f12f34065b870bad1b4a5cea616ba7b7da2e322d29e346f92ceb5f6626c4
ep_bytes: 60be00e097008dbe0030a8ff57eb0b90
timestamp: 2023-04-05 11:21:11


Version Info:

FileDescription: UltraVNC Setup
FileVersion: 1.4.0.9
LegalCopyright: UltraVnc Team
ProductName: UltraVnc
ProductVersion: 1.4.0.9
Translation: 0x0809 0x04b0

Jaik.80152 also known as:

Elasticmalicious (moderate confidence)
MicroWorld-eScanGen:Variant.Jaik.80152
ClamAVWin.Trojan.Banload-9875668-0
Cylanceunsafe
VIPREGen:Variant.Jaik.80152
BitDefenderGen:Variant.Jaik.80152
CrowdStrikewin/grayware_confidence_70% (D)
APEXMalicious
CynetMalicious (score: 100)
Kasperskynot-a-virus:UDS:RemoteAdmin.Win32.UltraVNC.gen
EmsisoftGen:Variant.Jaik.80152 (B)
Trapminemalicious.moderate.ml.score
FireEyeGeneric.mg.5b7e881ac6d8e2a6
SophosGeneric ML PUA (PUA)
GDataGen:Variant.Jaik.80152
JiangminTrojan.Script.awbz
MAXmalware (ai score=81)
ArcabitTrojan.Jaik.D13918
ZoneAlarmnot-a-virus:UDS:RemoteAdmin.Win32.UltraVNC.gen
MicrosoftTrojan:Win32/Wacatac.B!ml
GoogleDetected
ALYacGen:Variant.Jaik.80152
DeepInstinctMALICIOUS

How to remove Jaik.80152?

Jaik.80152 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment