Malware

About “Malware-Cryptor.Inject” infection

Malware Removal

The Malware-Cryptor.Inject is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware-Cryptor.Inject virus can do?

  • Injection (inter-process)
  • Injection with CreateRemoteThread in a remote process
  • Unconventionial binary language: Chinese (Simplified)
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

How to determine Malware-Cryptor.Inject?



File Info:

crc32: 30699D4F
md5: 9ac9c1942d5b206f8645e8099d591052
name: U9WELoader.exe
sha1: 0554e9453163abb0e8328e3c181ba3553bc9e670
sha256: e281ea81596f0f2337824e48b97f121b721ff27765d1a487bd37004dd5b419a0
sha512: 6bbd245245e6de2b89ada9e2b68f7d10ca363e5f76415e881d3f023af65aa7a9ca69aa097f1d3df541a2a4af263f14c0d4589d684c071a2946a24f69055d8d9d
ssdeep: 768:BEnHl5ISDiiv+3hMC8J4LhPod6lTx95kHHqsr8yDcOt0trM:BEnFAV3YJmhPVj5kHHqCYw0to
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright: Copyright(C)2008 UUU9.COM, by Shasure
InternalName: WELoader
FileVersion: 1, 0, 0, 1
CompanyName: x897fx5b89x4f18x4e45x6570x7801x79d1x6280x6709x9650x516cx53f8
ProductName: WELoader
ProductVersion: 1, 0, 0, 1
FileDescription: WELoader
OriginalFilename: WELoader.exe
Translation: 0x0804 0x04b0

Malware-Cryptor.Inject also known as:

BkavW32.eHeur.Malware11
CAT-QuickHealTrojan.IGENERIC
CylanceUnsafe
K7GWTrojan ( 0000000c1 )
K7AntiVirusTrojan ( 0000000c1 )
SymantecBackdoor.Trojan
Paloaltogeneric.ml
GDataWin32.Trojan.Agent.UQUNGT
NANO-AntivirusTrojan.Win32.Offend.efqedt
VIPRETrojan.Win32.Generic!BT
McAfee-GW-EditionGenericR-HTD!9AC9C1942D5B
IkarusTrojan.Generic10.BBWO
CyrenW32/Trojan.PYHQ-2087
WebrootW32.Malware.Gen
MAXmalware (ai score=99)
Endgamemalicious (high confidence)
AegisLabGeneric10.Bbwo!c
AhnLab-V3Trojan/Win32.Xema.R40078
McAfeeGenericR-HTD!9AC9C1942D5B
AVwareTrojan.Win32.Generic!BT
TACHYONTrojan/W32.Agent.52736.CV
VBA32Malware-Cryptor.Inject.gen
YandexTrojan.Orsam!Yvl2hZ6KD+g
FortinetGenericR.HTD!tr
CrowdStrikemalicious_confidence_60% (D)

How to remove Malware-Cryptor.Inject?

Malware-Cryptor.Inject removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment