Malware

Jaiko.5145 malicious file

Malware Removal

The Jaiko.5145 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware - Review 2020

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
6-day free trial available.

What Jaiko.5145 virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Sample contains Overlay data
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX
  • Authenticode signature is invalid

How to determine Jaiko.5145?


File Info:

name: 91E57C038C75864F0CB7.mlw
path: /opt/CAPEv2/storage/binaries/359563227357ea267ddbf20651b626f9993b0784e067ce50f8959d9da026da95
crc32: 1362C1AE
md5: 91e57c038c75864f0cb77f83ab7b1ea3
sha1: 21e46fc37038d43e3b9513da413229ec0b6df2b6
sha256: 359563227357ea267ddbf20651b626f9993b0784e067ce50f8959d9da026da95
sha512: 558a012372ee103d4baf7ee4beb59e0bac96bc18611240e6d67486870e05f1c1372970b2656358ddbfa01574f100b498be16d0fe088ea1331aa253310d5f2134
ssdeep: 384:0F7N/A9WaEQFdZ8H8IRrDFc/peO+0Uk2r:i7N/xvQFMHJDFcttI
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T120628EA0F6754797E48714358BB3EBB8D4097CA08A2A524775F0BFEF1C70268AC94296
sha3_384: 1738ec0b98a798d7ba202432e3f7c7d5438fc791d21fafde7fd75c169161d1d35ed9d77210a47b88c291b735f16e6d43
ep_bytes: 60be009040008dbe0080ffff5783cdff
timestamp: 2009-04-12 19:33:42

Version Info:

Translation: 0x0409 0x04b0
FileDescription: 41
ProductName: ka
FileVersion: 7.05.0002
ProductVersion: 7.05.0002
InternalName: p8d
OriginalFilename: p8d.exe

Jaiko.5145 also known as:

BkavW32.AIDetect.malware2
LionicHeuristic.File.Generic.00×1!p
Elasticmalicious (moderate confidence)
MicroWorld-eScanGen:Variant.Jaiko.5145
FireEyeGeneric.mg.91e57c038c75864f
ALYacGen:Variant.Jaiko.5145
CylanceUnsafe
ZillyaTrojan.VB.Win32.56
K7AntiVirusPassword-Stealer ( 0055e3dc1 )
AlibabaTrojanPSW:Win32/VBgen.e9a25148
K7GWPassword-Stealer ( 0055e3dc1 )
CrowdStrikewin/malicious_confidence_90% (W)
BitDefenderThetaAI:Packer.5135ED6C1F
CyrenW32/Trojan.IDTV-2305
SymantecML.Attribute.HighConfidence
tehtrisGeneric.Malware
ESET-NOD32a variant of Win32/PSW.VB.NFA
TrendMicro-HouseCallTROJ_IFCF_0000000.TOMA
Paloaltogeneric.ml
ClamAVWin.Trojan.Agent-805014
KasperskyTrojan.Win32.VB.rcp
BitDefenderGen:Variant.Jaiko.5145
NANO-AntivirusTrojan.Win32.VB.rpbfa
CynetMalicious (score: 99)
SUPERAntiSpywareTrojan.Agent/Gen-Dropper
AvastWin32:Evo-gen [Trj]
TencentMalware.Win32.Gencirc.10c850a0
Ad-AwareGen:Variant.Jaiko.5145
EmsisoftGen:Variant.Jaiko.5145 (B)
ComodoTrojWare.Win32.Trojan.VB.~Rcp@1t3ukx
DrWebTrojan.Siggen1.52697
VIPREGen:Variant.Jaiko.5145
TrendMicroTROJ_VB_FE110185.UVPM
McAfee-GW-EditionGenericRXFL-KA!E115002229D1
Trapminemalicious.moderate.ml.score
SophosMal/VBbl-PP
APEXMalicious
GDataGen:Variant.Jaiko.5145
JiangminTrojan/VB.azrp
WebrootW32.Malware.Gen
AviraTR/Dropper.Gen
MAXmalware (ai score=100)
Antiy-AVLTrojan/Generic.ASMalwS.1F
ViRobotTrojan.Win32.A.VB.15372[UPX]
MicrosoftTrojan:Win32/Wacatac.B!ml
GoogleDetected
AhnLab-V3Trojan/Win32.VB.R19870
Acronissuspicious
McAfeeArtemis!91E57C038C75
VBA32Worm.AutoRun
MalwarebytesMalware.Heuristic.1003
IkarusTrojan.Win32.VB
RisingTrojan.VBInject!1.64FE (CLOUD)
YandexTrojan.GenAsa!UGmHIAPoqE0
SentinelOneStatic AI – Malicious PE
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/Generic.AC.1F72E6!tr
AVGWin32:Evo-gen [Trj]
Cybereasonmalicious.38c758
PandaAdware/AccesMembre

How to remove Jaiko.5145?

Jaiko.5145 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment