Malware

Program:Win32/Ymacco.AA92 (file analysis)

Malware Removal

The Program:Win32/Ymacco.AA92 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Program:Win32/Ymacco.AA92 virus can do?

  • Creates RWX memory
  • Unconventionial language used in binary resources: Russian
  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

How to determine Program:Win32/Ymacco.AA92?



File Info:

crc32: 17287B91
md5: 7a51d203428007a7720c550af90a8f7a
name: 7A51D203428007A7720C550AF90A8F7A.mlw
sha1: 3a4c83646698e26ed5baa8b84c51df903f51b1e5
sha256: 92d4f6588cb16390050ed95d26d9ccdc57a6315e250b918a0aad2e81e32b40fe
sha512: 8d8b24ec91a460ad01f584cf65c6b19a178c6dafd542cfb95c2567842daf10b3325ac910be7a2cf8a4514fa60c5b00d0b6a65a9b155d2fa7472e87f033173a93
ssdeep: 12288:r+m3OFryBn0Qjb8glLW/BhbWWOlDAq4Xfoa:KKOcBn02DgfbZqQfo
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

0: [No Data]

Program:Win32/Ymacco.AA92 also known as:

BkavW32.AIDetect.malware2
LionicAdware.Win32.Generic.2!c
CynetMalicious (score: 99)
ALYacTrojan.GenericKD.37996003
CylanceUnsafe
ZillyaTrojan.Generic.Win32.1120261
SangforTrojan.Win32.Wacapew.C!ml
AlibabaAdWare:Win32/DealPly.c2737b58
CyrenW32/DealPly.BJ.gen!Eldorado
SymantecML.Attribute.HighConfidence
APEXMalicious
AvastWin32:Adware-gen [Adw]
Kasperskynot-a-virus:HEUR:AdWare.Win32.Generic
BitDefenderTrojan.GenericKD.37996003
NANO-AntivirusRiskware.Win32.Mlw.hoqsci
ViRobotTrojan.Win32.Z.Crypt.438272.B
MicroWorld-eScanTrojan.GenericKD.37996003
Ad-AwareTrojan.GenericKD.37996003
SophosGeneric PUA DK (PUA)
ComodoApplicUnwnt@#3c1a0dkjodktr
VIPRETrojan.Win32.Generic!BT
TrendMicroTROJ_GEN.R002C0PKA21
McAfee-GW-EditionBehavesLike.Win32.Worm.gh
FireEyeTrojan.GenericKD.37996003
EmsisoftTrojan.GenericKD.37996003 (B)
AviraTR/Crypt.ZPACK.Gen
MicrosoftProgram:Win32/Ymacco.AA92
GDataTrojan.GenericKD.37996003
McAfeeGeneric.bop
MAXmalware (ai score=84)
VBA32BScope.Trojan.Wacatac
PandaTrj/GdSda.A
TrendMicro-HouseCallTROJ_GEN.R002C0PKA21
RisingTrojan.Generic@ML.92 (RDML:rvhblkTGFJjJDmuSBbsc8A)
IkarusTrojan.Crypt
MaxSecureTrojan.Malware.300983.susgen
FortinetAdware/Generic
AVGWin32:Adware-gen [Adw]
Paloaltogeneric.ml

How to remove Program:Win32/Ymacco.AA92?

Program:Win32/Ymacco.AA92 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment