PUA:Win32/Caypnamer.A!ml removal tips

Malware Removal

The PUA:Win32/Caypnamer.A!ml is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware - Review 2020

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
6-day free trial available.

What PUA:Win32/Caypnamer.A!ml virus can do?

  • Attempts to connect to a dead IP:Port (1 unique times)
  • A process attempted to delay the analysis task.
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX
  • Installs an hook procedure to monitor for mouse events
  • Sniffs keystrokes

Related domains:

z.whorecord.xyz
a.tomx.xyz

How to determine PUA:Win32/Caypnamer.A!ml?


File Info:

crc32: EEAEEF71
md5: b107736c7a64743af3e6105492a0e7b8
name: newserver.exe
sha1: 1adf4885d8cc6741cabc4f2c62e4dac534dd48ed
sha256: 14e08da067ec2261001ef427c6bd3a45d6a5dc43e43b4b716dbc85693e1782a9
sha512: dc71bf5d035986240ffcd5041a71d990c5112330fbb13d3fbf5c7f7b98804a9c4db1e57e7a7b91cdc08410a6ec9a49b84e56f1ee2354a8784f6aff1b7a17412c
ssdeep: 49152:7i4K1xzAn3e8slPvVTCkUoULeUynGz1afEF5/E:W4s7vJCkU6sz1aW
type: PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed

Version Info:

0: [No Data]

PUA:Win32/Caypnamer.A!ml also known as:

CynetMalicious (score: 90)
FireEyeGeneric.mg.b107736c7a64743a
Qihoo-360HEUR/QVM11.1.A30F.Malware.Gen
McAfeeArtemis!B107736C7A64
CylanceUnsafe
BitDefenderGen:Variant.Graftor.788431
K7GWTrojan ( 00569be91 )
CrowdStrikewin/malicious_confidence_80% (D)
F-ProtW32/Downloader.N.gen!Eldorado
SymantecML.Attribute.HighConfidence
APEXMalicious
Paloaltogeneric.ml
GDataGen:Variant.Graftor.788431
KasperskyTrojan.Win32.Altods.h
AlibabaTrojan:Win32/Generic.c9025af6
MicroWorld-eScanGen:Variant.Graftor.788431
RisingTrojan.Agent!8.B1E (CLOUD)
Endgamemalicious (high confidence)
EmsisoftGen:Variant.Graftor.788431 (B)
F-SecureTrojan.TR/Crypt.ULPM.Gen
Trapminemalicious.moderate.ml.score
SophosMal/Generic-S
IkarusTrojan.Win32.Agent
CyrenW32/Downloader.N.gen!Eldorado
AviraTR/Crypt.ULPM.Gen
MAXmalware (ai score=81)
ArcabitTrojan.Graftor.DC07CF
ZoneAlarmTrojan.Win32.Altods.h
MicrosoftPUA:Win32/Caypnamer.A!ml
VBA32BScope.Trojan.Wacatac
ALYacGen:Variant.Graftor.788431
Ad-AwareGen:Variant.Graftor.788431
ESET-NOD32a variant of Win32/Agent.ACBZ
TrendMicro-HouseCallTROJ_GEN.R002H0CGH20
eGambitUnsafe.AI_Score_99%
FortinetW32/Agent.ACBZ!tr
BitDefenderThetaAI:Packer.CDF7CA291E
AVGWin32:RATX-gen [Trj]
Cybereasonmalicious.c7a647
AvastWin32:RATX-gen [Trj]

How to remove PUA:Win32/Caypnamer.A!ml?

PUA:Win32/Caypnamer.A!ml removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

Leave a Comment