Trojan.Agent.Vebzenpak removal

The Trojan.Agent.Vebzenpak is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Trojan.Agent.Vebzenpak virus can do?

Executable code extraction
Attempts to connect to a dead IP:Port (1 unique times)
Creates RWX memory
A process created a hidden window
Unconventionial language used in binary resources: Sindhi
The binary likely contains encrypted or compressed data.
Uses Windows utilities for basic functionality
Deletes its original binary from disk
Uses suspicious command line tools or Windows utilities

Related domains:

z.whorecord.xyz

myetherwalet.top

a.tomx.xyz

myehterwallet.top

How to determine Trojan.Agent.Vebzenpak?


File Info:
crc32: 231A8337
md5: 1ffc8bb97af9f908655894fbf8a93064
name: updatewallet.exe
sha1: 9679508979e389fb5c287957c817bb979e06d902
sha256: 5c197a3050357890623e49dff313b1189d61c7902cb97145bcdb9bb6433d7e67
sha512: 7883a5a75fb57f9971081e5a23b7cee742e96e82877df3c97c87a842298d5ba47133f969c2f606ce94c06d30d191bf3925c981342d984299c9201d58975c45d1
ssdeep: 6144:t6WAf0enplUTOTHvnajRoe0e0jlS4kAEy5fJ:t6pMylUTOTHvajiy0BXkOxJ
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:
0: [No Data]

Trojan.Agent.Vebzenpak also known as:

MicroWorld-eScan	Trojan.GenericKDZ.62242
CAT-QuickHeal	Trojan.Wacatac
Qihoo-360	Trojan.Generic
McAfee	Trojan-FRVT!1FFC8BB97AF9
Cylance	Unsafe
Sangfor	Malware
BitDefender	Trojan.GenericKDZ.62242
K7GW	Trojan ( 0055f4ac1 )
Arcabit	Trojan.Generic.DF322
TrendMicro	TROJ_GEN.R002C0PB720
Symantec	Trojan.Gen.2
ESET-NOD32	a variant of Win32/Kryptik.HAMO
APEX	Malicious
Paloalto	generic.ml
Kaspersky	Trojan.Win32.Zenpak.usq
Alibaba	Trojan:Win32/Kryptik.94ddec18
NANO-Antivirus	Trojan.Win32.Kryptik.gznxfc
ViRobot	Trojan.Win32.Z.Agent.283648.CB
Tencent	Win32.Trojan.Zenpak.Eeim
Ad-Aware	Trojan.GenericKDZ.62242
Emsisoft	Trojan.GenericKDZ.62242 (B)
Comodo	Malware@#3po7d4oa7j2il
F-Secure	Trojan.TR/AD.Khalesi.uodcf
DrWeb	Trojan.DownLoader32.61684
Invincea	heuristic
McAfee-GW-Edition	BehavesLike.Win32.Generic.dh
Fortinet	W32/GenKryptik.ECON!tr
Trapmine	malicious.high.ml.score
FireEye	Generic.mg.1ffc8bb97af9f908
Sophos	Mal/Generic-S
SentinelOne	DFI – Malicious PE
Cyren	W32/Trojan.JQAU-8713
Jiangmin	Trojan.Zenpak.bas
Webroot	W32.Trojan.GenKDZ
Avira	TR/AD.Khalesi.uodcf
MAX	malware (ai score=100)
Endgame	malicious (high confidence)
Microsoft	Trojan:Win32/Qbot.PVK!MTB
ZoneAlarm	Trojan.Win32.Zenpak.usq
AhnLab-V3	Trojan/Win32.MalPe.R317762
Acronis	suspicious
ALYac	Trojan.Agent.Vebzenpak
Panda	Trj/GdSda.A
TrendMicro-HouseCall	TROJ_GEN.R002C0PB720
Rising	Trojan.Kryptik!8.8 (CLOUD)
Ikarus	Trojan.Crypt.Agent
eGambit	Unsafe.AI_Score_100%
GData	Win32.Packed.Kryptik.93J5LK
BitDefenderTheta	Gen:NN.ZexaF.34090.rKW@aOHnxvcG
AVG	Win32:MalwareX-gen [Trj]
Avast	Win32:MalwareX-gen [Trj]
CrowdStrike	win/malicious_confidence_100% (W)

How to remove Trojan.Agent.Vebzenpak?

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

Trojan.Agent.Vebzenpak removal