Trojan

Trojan.Heur.ymNfVVfzAnfj removal guide

Malware Removal

The Trojan.Heur.ymNfVVfzAnfj is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Heur.ymNfVVfzAnfj virus can do?

  • Sample contains Overlay data
  • Unconventionial binary language: Chinese (Simplified)
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid

How to determine Trojan.Heur.ymNfVVfzAnfj?



File Info:

name: 8EC0E6FCA20AA96E2C1F.mlw
path: /opt/CAPEv2/storage/binaries/008daa5a6edd4903a8144ed1d62ddac7b54702946a5918d045abd04ef4ca5156
crc32: 26701682
md5: 8ec0e6fca20aa96e2c1f94e5e012c805
sha1: 6d2a8001d5806119f4b1b78e35bcf747e3cba1b1
sha256: 008daa5a6edd4903a8144ed1d62ddac7b54702946a5918d045abd04ef4ca5156
sha512: 69861fa226b2db20c5f1578f70d5c9e3ee0e1775231805d75812cdc4446f4cbbe9a225567584c3fe3b848ab41c738508b31e12394075dd839f9662e83d8f8583
ssdeep: 12288:s2RrHKH6xPxjnSA4oGnGazCS+eVMtqR76:TrHKaxPRSA4owMYRG
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1E79413DA5A516425C85F67F1E5AFB3D2AE28F48235850C36933712B9DC289CFA312B24
sha3_384: 18eeb02d732f46018d18584a86b817daf2489d7636fe196c701a3308e335f64b1a476f21f80921bcf8bfbf826d23a9ed
ep_bytes: 60be00a046008dbe0070f9ffc7870cf7
timestamp: 1992-06-19 22:22:17


Version Info:

CompanyName: 
FileDescription: UPX Shell For PE files
FileVersion: 0.9.8.0
InternalName: UPXShell 
LegalCopyright: Copyright 2001, dREAMtHEATER
LegalTrademarks: 
OriginalFilename: UPXShell.exe
ProductName: UPXShell
ProductVersion: 0.9
Comments: Do not unpack and disassemble this program!
Translation: 0x0804 0x03a8

Trojan.Heur.ymNfVVfzAnfj also known as:

BkavW32.AIDetectMalware
LionicTrojan.Win32.Ymnfvvfzanfj.4!c
MicroWorld-eScanGen:Trojan.Heur.ymNfVVfzAnfj
FireEyeGen:Trojan.Heur.ymNfVVfzAnfj
SkyhighBehavesLike.Win32.ObfuscatedPoly.fc
ALYacGen:Trojan.Heur.ymNfVVfzAnfj
Cylanceunsafe
ZillyaTrojan.ymNfVVfzAnfj.Win32.1
SangforTrojan.Win32.Agent.Vnqm
Cybereasonmalicious.1d5806
ArcabitTrojan.Heur.ymNfVVfzAnfj
BitDefenderThetaAI:Packer.27021B6B1C
Elasticmalicious (moderate confidence)
APEXMalicious
CynetMalicious (score: 100)
BitDefenderGen:Trojan.Heur.ymNfVVfzAnfj
AvastFileRepMalware [Misc]
SophosMal/Generic-S
F-SecureMalware.W32/Parite.BadClean.Gen
VIPREGen:Trojan.Heur.ymNfVVfzAnfj
Trapminemalicious.moderate.ml.score
EmsisoftGen:Trojan.Heur.ymNfVVfzAnfj (B)
AviraW32/Parite.BadClean.Gen
XcitiumMalware@#37ogf0tpqz90q
GDataGen:Trojan.Heur.ymNfVVfzAnfj
McAfeeArtemis!8EC0E6FCA20A
MAXmalware (ai score=88)
MaxSecureTrojan.Malware.300983.susgen
AVGFileRepMalware [Misc]
DeepInstinctMALICIOUS

How to remove Trojan.Heur.ymNfVVfzAnfj?

Trojan.Heur.ymNfVVfzAnfj removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment