Ser.Jaik.569 (file analysis)

The Ser.Jaik.569 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Ser.Jaik.569 virus can do?

Executable code extraction
Creates RWX memory
Reads data out of its own binary image
Drops a binary and executes it
The binary likely contains encrypted or compressed data.
Attempts to remove evidence of file being downloaded from the Internet
Installs itself for autorun at Windows startup
Network activity detected but not expressed in API logs
Creates a copy of itself

Related domains:

z.whorecord.xyz

a.tomx.xyz

How to determine Ser.Jaik.569?


File Info:
crc32: 819E3383
md5: 4bddfecb6be4a4c2c27a0be6b236171a
name: 4BDDFECB6BE4A4C2C27A0BE6B236171A.mlw
sha1: 0529d9d58503d0dd7f4aa7fd0dd4de1a6e9176a6
sha256: c793cb32d8938725df88eb26353a083f2e7e6b56e26b7b87dd239fa361058309
sha512: f37d2ea18c0d356c2efcce422d1ed529bcc68d847135384b52ec5875d5077f7af9566b5ba3e1e73e6b45b822f9f01d4d9a8bfd63bb38620112fa5eb6c04b46a8
ssdeep: 12288:IFK3hoxkmiXcG2wHpfrCWzI5Jp80L1vLtCCHN7C6Q04rVuejjxxlXppppppAve4:7R3Hpfr+5JptlLtZBC6Q/VxVppppppA
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:
LegalCopyright: Copyright xa9 1999 - 2014 Nattyware
Assembly Version: 6.2.7.578
InternalName: As
FileVersion: 6.2.7.578
CompanyName: Nattyware
PrivateBuild: 6.2.7.578
LegalTrademarks: Copyright xa9 1999 - 2014 Nattyware
Comments: Make Surfaced Struggled
ProductName: As
Languages: English
ProductVersion: 6.2.7.578
FileDescription: Make Surfaced Struggled
OriginalFilename: As.exe
Translation: 0x0409 0x04b0

Ser.Jaik.569 also known as:

Bkav	W32.AIDetect.malware2
K7AntiVirus	Trojan ( 00527a941 )
Lionic	Trojan.Win32.Generic.4!c
Elastic	malicious (high confidence)
Cynet	Malicious (score: 100)
ALYac	Gen:Variant.Ser.Jaik.569
Cylance	Unsafe
Zillya	Trojan.Agent.Win32.1120374
Sangfor	Trojan.Win32.Generic.ky
CrowdStrike	win/malicious_confidence_100% (W)
Alibaba	Trojan:MSIL/MalwareCrypter.4589b989
K7GW	Trojan ( 00527a941 )
Cybereason	malicious.b6be4a
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	MSIL/Agent.BIR
APEX	Malicious
Avast	Win32:Malware-gen
Kaspersky	HEUR:Trojan.Win32.Generic
BitDefender	Gen:Variant.Ser.Jaik.569
ViRobot	Trojan.Win32.Z.Agent.740352.CS
MicroWorld-eScan	Gen:Variant.Ser.Jaik.569
Tencent	Win32.Trojan.Generic.Pgxh
Ad-Aware	Gen:Variant.Ser.Jaik.569
Sophos	Mal/Generic-S
Comodo	Malware@#2uczkzkyzd5dh
BitDefenderTheta	Gen:NN.ZexaF.34266.Tu0@aimxgoji
VIPRE	Trojan.Win32.Generic!BT
TrendMicro	Backdoor.Win32.PARAZIT.SM
McAfee-GW-Edition	BehavesLike.Win32.Dropper.bc
FireEye	Generic.mg.4bddfecb6be4a4c2
Emsisoft	Gen:Variant.Ser.Jaik.569 (B)
SentinelOne	Static AI – Malicious PE
Webroot	W32.Malware.Gen
Avira	TR/AD.MalwareCrypter.lsp
eGambit	Unsafe.AI_Score_99%
Antiy-AVL	Trojan/Generic.ASMalwS.2C1F612
Microsoft	Trojan:Win32/Skeeyah.A!rfn
Arcabit	Trojan.Ser.Jaik.569
GData	Gen:Variant.Ser.Jaik.569
AhnLab-V3	Win-Trojan/MalPe25.Suspicious.X2011
Acronis	suspicious
McAfee	RDN/Generic BackDoor
VBA32	BScope.Trojan.Casur
Malwarebytes	MachineLearning/Anomalous.97%
Panda	Trj/CI.A
TrendMicro-HouseCall	Backdoor.Win32.PARAZIT.SM
Rising	Trojan.Generic@ML.90 (RDML:W3H5aYZfP1Lmzak/mSN9Rg)
Yandex	Trojan.Agent!OLHdd7WP9Wo
Ikarus	Trojan.MSIL.Agent
Fortinet	W32/Kryptik.GVSM!tr
AVG	Win32:Malware-gen
Paloalto	generic.ml

How to remove Ser.Jaik.569?

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

Ser.Jaik.569 (file analysis)