Trojan

Trojan.Agent.CAXB (file analysis)

Malware Removal

The Trojan.Agent.CAXB is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Agent.CAXB virus can do?

  • Executable code extraction
  • Injection (inter-process)
  • Injection (Process Hollowing)
  • Injection with CreateRemoteThread in a remote process
  • Creates RWX memory
  • Executed a process and injected code into it, probably while unpacking
  • Network activity detected but not expressed in API logs

How to determine Trojan.Agent.CAXB?



File Info:

crc32: 762519E5
md5: 1b2ce89074d8979210341a78e3b4f2d4
name: 1B2CE89074D8979210341A78E3B4F2D4.mlw
sha1: 4fc72bb84cf11cd2a337f3cdc7334dc577e2b323
sha256: aa8314d22b547d8032bb70d33457e2b259de5f970b11067fb5050e381ee851b3
sha512: c31535be20a2196f23d71f7de5cd63d168a0c34e7dce5bd6b79e715cb250921769c81eabcb5ef26a2522cf98b5252ab28ef23f7c60a3e41d8c27cd7991540535
ssdeep: 3072:kUDLH6Dn5c+svB6Y4kJWF6oq6EO7+n8Ki4e9NrMy:9/8nQpJWF6xnJANrM
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

0: [No Data]

Trojan.Agent.CAXB also known as:

BkavW32.FamVT.RazyNHmA.Trojan
K7AntiVirusTrojan ( 0055e3e11 )
Elasticmalicious (high confidence)
DrWebBackDoor.IRC.NgrBot.966
CynetMalicious (score: 100)
ALYacTrojan.Neurevt.A
CylanceUnsafe
ZillyaTrojan.GenKryptik.Win32.1533
SangforTrojan.Win32.Save.a
CrowdStrikewin/malicious_confidence_100% (W)
AlibabaTrojan:Win32/Kasidet.2d96cc82
K7GWTrojan ( 0055e3e11 )
Cybereasonmalicious.074d89
BaiduWin32.Trojan.Kryptik.auw
CyrenW32/S-e2e07e9d!Eldorado
SymantecPacked.Generic.521
ESET-NOD32a variant of Win32/Kryptik.FEQG
APEXMalicious
AvastWin32:BankerX-gen [Trj]
ClamAVWin.Malware.Caxb-7917270-0
KasperskyTrojan.Win32.Kasidet.vca
BitDefenderTrojan.Agent.CAXB
NANO-AntivirusTrojan.Win32.NgrBot.farblv
ViRobotTrojan.Win32.Agent.256000.H
SUPERAntiSpywareTrojan.Agent/Gen-Kryptik
MicroWorld-eScanTrojan.Agent.CAXB
TencentMalware.Win32.Gencirc.114b4536
Ad-AwareTrojan.Agent.CAXB
SophosMal/Generic-S
ComodoTrojWare.Win32.Injector.DJJJ@6lhzhp
F-SecureTrojan.TR/Kryptik.cfa.8
BitDefenderThetaGen:NN.ZexaF.34662.kyW@ampVID
VIPRETrojan.Win32.Generic!BT
TrendMicroWORM_HPKASIDET.SM0
McAfee-GW-EditionGenericRXAL-UV!1B2CE89074D8
FireEyeGeneric.mg.1b2ce89074d89792
EmsisoftTrojan.Agent.CAXB (B)
JiangminTrojanProxy.Lethic.xb
WebrootW32.Trojan.Gen
AviraTR/Kryptik.cfa.8
eGambitUnsafe.AI_Score_99%
KingsoftWin32.Troj.Undef.(kcloud)
MicrosoftTrojan:Win32/Neurevt
GridinsoftTrojan.Win32.Injector.cc!s4
ArcabitTrojan.Agent.CAXB
AegisLabTrojan.Win32.Kasidet.trFW
ZoneAlarmTrojan.Win32.Kasidet.vca
GDataTrojan.Agent.CAXB
TACHYONTrojan/W32.Agent.178176.SM
AhnLab-V3Trojan/Win32.Bublik.R189390
McAfeeGenericRXAP-WL!1B2CE89074D8
MAXmalware (ai score=100)
VBA32BScope.Trojan.Proxy
MalwarebytesTrojan.Crypt
PandaTrj/GdSda.A
TrendMicro-HouseCallWORM_HPKASIDET.SM0
RisingWorm.Gamarue!8.13B (C64:YzY0OuQzNffb+9en)
YandexTrojan.GenAsa!z3iSYc8oq1k
SentinelOneStatic AI – Suspicious PE
FortinetW32/Generic.AC.2705124
AVGWin32:BankerX-gen [Trj]
Paloaltogeneric.ml
Qihoo-360Win32/Backdoor.Neutrino.HgIASOYA

How to remove Trojan.Agent.CAXB?

Trojan.Agent.CAXB removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment