Trojan

Trojan.Agent.AXYK (B) removal instruction

Malware Removal

The Trojan.Agent.AXYK (B) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Agent.AXYK (B) virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Reads data out of its own binary image
  • CAPE extracted potentially suspicious content
  • Drops a binary and executes it
  • Authenticode signature is invalid
  • Behavioural detection: Injection (inter-process)
  • Anomalous binary characteristics
  • Attempts to modify Explorer settings to prevent hidden files from being displayed

How to determine Trojan.Agent.AXYK (B)?



File Info:

name: 78294EF131965F591F01.mlw
path: /opt/CAPEv2/storage/binaries/99428f505d105f4d81566372dc0b6c0182c5787be5bf96ad85c36342b8a5afc7
crc32: C06DC993
md5: 78294ef131965f591f01b4d37e654f18
sha1: 9612cb1a4757a26b4534caa6576cb742182dafae
sha256: 99428f505d105f4d81566372dc0b6c0182c5787be5bf96ad85c36342b8a5afc7
sha512: 2772249cceb7bdda17099c2efdbfefd2e33c7929a8ccf09f91fbe2ed3c983cee0ac0cd826f13aaa91dc005e46140413eae00a5b7b08ad4d70d2012557c060680
ssdeep: 3072:VeD0qy7TBJVSgpS5uIyio/Conuh1CNvDbi2u:VrqoTB2grko/C2gcniT
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T13ED3C6297691F23ECA15CAF4295A43E0947DAD3625D2BC07F3C22B16B2F1DA79360713
sha3_384: 6c08e5826951a9be4b152a7030e4d6fd70a0b19b26e8ae391a3913be21e02cb60c5355ee330753ac52a9a26f768701ec
ep_bytes: 68a0334000e8f0ffffff000000000000
timestamp: 2011-08-30 14:05:09


Version Info:

Translation: 0x0409 0x04b0
ProductName: eYvCbKCtybvSVNABY
FileVersion: 1.00
ProductVersion: 1.00
InternalName: wNiyXbyJ
OriginalFilename: wNiyXbyJ.exe

Trojan.Agent.AXYK (B) also known as:

BkavW32.AIDetectMalware
Elasticmalicious (high confidence)
CynetMalicious (score: 100)
CAT-QuickHealTrojan.Vobfus.gen
SkyhighBehavesLike.Win32.VBObfus.cm
McAfeeVBObfus.at
MalwarebytesGeneric.Malware.AI.DDS
SangforSuspicious.Win32.Save.vb
K7AntiVirusEmailWorm ( 0054d10f1 )
K7GWEmailWorm ( 0054d10f1 )
Cybereasonmalicious.131965
ArcabitTrojan.Agent.AXYK
BaiduWin32.Worm.Pronny.d
VirITWorm.Win32.WBNA.OKS
SymantecW32.Changeup!gen35
tehtrisGeneric.Malware
ESET-NOD32Win32/AutoRun.VB.AKU
APEXMalicious
ClamAVWin.Trojan.Vobfus-12
KasperskyWorm.Win32.Vobfus.efni
BitDefenderTrojan.Agent.AXYK
NANO-AntivirusTrojan.Win32.VBKrypt.covkxs
SUPERAntiSpywareTrojan.Agent/Gen-Vban
MicroWorld-eScanTrojan.Agent.AXYK
AvastWin32:VB-ABDC [Drp]
TencentWorm.Win32.Vobfus.n
TACHYONWorm/W32.Vobfus.135168
EmsisoftTrojan.Agent.AXYK (B)
F-SecureTrojan.TR/ATRAPS.Gen2
DrWebTrojan.VbCrypt.60
VIPRETrojan.Agent.AXYK
TrendMicroWORM_VOBFUS.SMAC
Trapminemalicious.moderate.ml.score
FireEyeGeneric.mg.78294ef131965f59
SophosMal/VB-XV
IkarusTrojan.Spy.Agent
GoogleDetected
AviraTR/ATRAPS.Gen2
Antiy-AVLWorm/Win32.WBNA.gen
Kingsoftmalware.kb.a.1000
XcitiumTrojWare.Win32.VB.AVA@4paxk7
MicrosoftWorm:Win32/Vobfus.DC
ZoneAlarmWorm.Win32.Vobfus.efni
GDataWin32.Trojan.PSE.UNRGU8
VaristW32/Vobfus.V.gen!Eldorado
AhnLab-V3Trojan/Win32.Diple.R23097
Acronissuspicious
BitDefenderThetaAI:Packer.6C9626C520
ALYacTrojan.Agent.AXYK
MAXmalware (ai score=82)
VBA32TScope.Trojan.VB
Cylanceunsafe
PandaW32/Vobfus.GEW.worm
TrendMicro-HouseCallWORM_VOBFUS.SMAC
RisingWorm.Vobfus!1.99C8 (CLASSIC)
YandexTrojan.GenAsa!hnsWsW5eEPo
SentinelOneStatic AI – Malicious PE
MaxSecureWorm.VB.ceo
FortinetW32/VBKrypt.C!tr
AVGWin32:VB-ABDC [Drp]
DeepInstinctMALICIOUS
CrowdStrikewin/malicious_confidence_100% (W)
alibabacloudTrojan:Win/Atraps.65a5b980

How to remove Trojan.Agent.AXYK (B)?

Trojan.Agent.AXYK (B) removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment