Ser.Jaik.569 (file analysis)

Malware Removal

The Ser.Jaik.569 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware - Review 2020

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
6-day free trial available.

What Ser.Jaik.569 virus can do?

  • Executable code extraction
  • Creates RWX memory
  • Reads data out of its own binary image
  • Drops a binary and executes it
  • The binary likely contains encrypted or compressed data.
  • Attempts to remove evidence of file being downloaded from the Internet
  • Installs itself for autorun at Windows startup
  • Network activity detected but not expressed in API logs
  • Creates a copy of itself

Related domains:

z.whorecord.xyz
a.tomx.xyz

How to determine Ser.Jaik.569?


File Info:

crc32: 819E3383
md5: 4bddfecb6be4a4c2c27a0be6b236171a
name: 4BDDFECB6BE4A4C2C27A0BE6B236171A.mlw
sha1: 0529d9d58503d0dd7f4aa7fd0dd4de1a6e9176a6
sha256: c793cb32d8938725df88eb26353a083f2e7e6b56e26b7b87dd239fa361058309
sha512: f37d2ea18c0d356c2efcce422d1ed529bcc68d847135384b52ec5875d5077f7af9566b5ba3e1e73e6b45b822f9f01d4d9a8bfd63bb38620112fa5eb6c04b46a8
ssdeep: 12288:IFK3hoxkmiXcG2wHpfrCWzI5Jp80L1vLtCCHN7C6Q04rVuejjxxlXppppppAve4:7R3Hpfr+5JptlLtZBC6Q/VxVppppppA
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:

LegalCopyright: Copyright xa9 1999 - 2014 Nattyware
Assembly Version: 6.2.7.578
InternalName: As
FileVersion: 6.2.7.578
CompanyName: Nattyware
PrivateBuild: 6.2.7.578
LegalTrademarks: Copyright xa9 1999 - 2014 Nattyware
Comments: Make Surfaced Struggled
ProductName: As
Languages: English
ProductVersion: 6.2.7.578
FileDescription: Make Surfaced Struggled
OriginalFilename: As.exe
Translation: 0x0409 0x04b0

Ser.Jaik.569 also known as:

BkavW32.AIDetect.malware2
K7AntiVirusTrojan ( 00527a941 )
LionicTrojan.Win32.Generic.4!c
Elasticmalicious (high confidence)
CynetMalicious (score: 100)
ALYacGen:Variant.Ser.Jaik.569
CylanceUnsafe
ZillyaTrojan.Agent.Win32.1120374
SangforTrojan.Win32.Generic.ky
CrowdStrikewin/malicious_confidence_100% (W)
AlibabaTrojan:MSIL/MalwareCrypter.4589b989
K7GWTrojan ( 00527a941 )
Cybereasonmalicious.b6be4a
SymantecML.Attribute.HighConfidence
ESET-NOD32MSIL/Agent.BIR
APEXMalicious
AvastWin32:Malware-gen
KasperskyHEUR:Trojan.Win32.Generic
BitDefenderGen:Variant.Ser.Jaik.569
ViRobotTrojan.Win32.Z.Agent.740352.CS
MicroWorld-eScanGen:Variant.Ser.Jaik.569
TencentWin32.Trojan.Generic.Pgxh
Ad-AwareGen:Variant.Ser.Jaik.569
SophosMal/Generic-S
ComodoMalware@#2uczkzkyzd5dh
BitDefenderThetaGen:NN.ZexaF.34266.Tu0@aimxgoji
VIPRETrojan.Win32.Generic!BT
TrendMicroBackdoor.Win32.PARAZIT.SM
McAfee-GW-EditionBehavesLike.Win32.Dropper.bc
FireEyeGeneric.mg.4bddfecb6be4a4c2
EmsisoftGen:Variant.Ser.Jaik.569 (B)
SentinelOneStatic AI – Malicious PE
WebrootW32.Malware.Gen
AviraTR/AD.MalwareCrypter.lsp
eGambitUnsafe.AI_Score_99%
Antiy-AVLTrojan/Generic.ASMalwS.2C1F612
MicrosoftTrojan:Win32/Skeeyah.A!rfn
ArcabitTrojan.Ser.Jaik.569
GDataGen:Variant.Ser.Jaik.569
AhnLab-V3Win-Trojan/MalPe25.Suspicious.X2011
Acronissuspicious
McAfeeRDN/Generic BackDoor
VBA32BScope.Trojan.Casur
MalwarebytesMachineLearning/Anomalous.97%
PandaTrj/CI.A
TrendMicro-HouseCallBackdoor.Win32.PARAZIT.SM
RisingTrojan.Generic@ML.90 (RDML:W3H5aYZfP1Lmzak/mSN9Rg)
YandexTrojan.Agent!OLHdd7WP9Wo
IkarusTrojan.MSIL.Agent
FortinetW32/Kryptik.GVSM!tr
AVGWin32:Malware-gen
Paloaltogeneric.ml

How to remove Ser.Jaik.569?

Ser.Jaik.569 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

Leave a Comment