Spy

Should I remove “Spyware.Stealer”?

Malware Removal

The Spyware.Stealer is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
6-day free trial available.

What Spyware.Stealer virus can do?

  • Network activity detected but not expressed in API logs

How to determine Spyware.Stealer?


File Info:

crc32: 252DB528
md5: ae57ec9680d73a5e1da32a9f37832d34
name: ransom.exe
sha1: 21009f632751184672a172a86f1dffd8b3c33e69
sha256: 4142ed5e856cbe45179c4c06e2304c4a16193cd17440adf61d2c7be1618c7551
sha512: 6c3c67f2d5cdf92585471ac7182c57ebeb0392195c40860258d74b1d63a45e929289486dcd6006a1a9189be752f1e5868376506994dcdfbad75fd38d63a4eefc
ssdeep: 768:Xuim64w8y4b8iV7a/VXbzFSGnXbTbHNwco+2qoJtIkQH2GnJ:X1h6fVmbwGXzy+2qoGvJ
type: PE32 executable (console) Intel 80386 Mono/.Net assembly, for MS Windows

Version Info:

Translation: 0x0000 0x04b0
LegalCopyright: Copyright xa9 2020
Assembly Version: 1.0.0.0
InternalName: DiscordTokenGrabber.exe
FileVersion: 1.0.0.0
CompanyName:
LegalTrademarks:
Comments:
ProductName: DiscordTokenGrabber
ProductVersion: 1.0.0.0
FileDescription: DiscordTokenGrabber
OriginalFilename: DiscordTokenGrabber.exe

Spyware.Stealer also known as:

MicroWorld-eScanTrojan.GenericKD.43215216
McAfeeRDN/Generic PWS.y
CylanceUnsafe
VIPRETrojan.Win32.Generic!BT
SangforMalware
K7AntiVirusPassword-Stealer ( 0055863e1 )
BitDefenderTrojan.GenericKD.43215216
K7GWPassword-Stealer ( 0055863e1 )
TrendMicroTROJ_GEN.R002C0DEP20
TrendMicro-HouseCallTROJ_GEN.R002C0DEP20
AvastWin32:Trojan-gen
KasperskyHEUR:Trojan-PSW.MSIL.Agent.gen
AlibabaTrojanPSW:MSIL/Discord.28a6a44f
APEXMalicious
RisingStealer.Agent!8.C2 (CLOUD)
Ad-AwareTrojan.GenericKD.43215216
EmsisoftTrojan.GenericKD.43215216 (B)
ComodoMalware@#1ls49fhakqtfy
F-SecureTrojan.TR/PSW.Agent.mfjrl
McAfee-GW-EditionRDN/Generic PWS.y
FortinetMSIL/Agent.RHM!tr.pws
FireEyeTrojan.GenericKD.43215216
SophosMal/Generic-S
AviraTR/PSW.Agent.mfjrl
MAXmalware (ai score=89)
Antiy-AVLTrojan[PSW]/MSIL.Agent
ArcabitTrojan.Generic.D2936970
ZoneAlarmHEUR:Trojan-PSW.MSIL.Agent.gen
MicrosoftPWS:MSIL/Discord.DHA!MTB
ALYacTrojan.GenericKD.43215216
MalwarebytesSpyware.Stealer
PandaTrj/GdSda.A
ESET-NOD32a variant of MSIL/PSW.Agent.RHM
IkarusTrojan.MSIL.PSW
GDataTrojan.GenericKD.43215216
AVGWin32:Trojan-gen
CrowdStrikewin/malicious_confidence_80% (W)

How to remove Spyware.Stealer?

Spyware.Stealer removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment