Trojan

Should I remove “Trojan.Kilonepag.25975”?

Malware Removal

The Trojan.Kilonepag.25975 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Kilonepag.25975 virus can do?

  • Injection (inter-process)
  • Injection (Process Hollowing)
  • Unconventionial binary language: Chinese (Simplified)
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • Uses Windows utilities for basic functionality
  • Executed a process and injected code into it, probably while unpacking

Related domains:

localhost.ptlogin2.qq.com

How to determine Trojan.Kilonepag.25975?



File Info:

crc32: C02DB50F
md5: ddd0854ab46224e276449f1f5cb2b53c
name: DDD0854AB46224E276449F1F5CB2B53C.mlw
sha1: 27f6537d2567a75a235c15b6c4fd77d5c7f056c6
sha256: 5c2dd500ff6f772dd7e2ed2c6efee8241223b8591815eb6f287b1289ce108dcb
sha512: 7e6dcd0a4b7bd9c62eea529f53e6ec8c8a713777960c5ab1052a6552d1b068d4edd4b8f767697d71b1d345224d03097b2cc84bc1af552ac28debf84b3a3057a0
ssdeep: 24576:AwtNyTz3U32OU4ZUrkVynkjdnNJBJQI1ll0YX589kGtQ2eiF:AwG382ObMa+kjdnNJPZZX5iyW
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright: x4f5cx8005x7248x6743x6240x6709 x8bf7x5c0ax91cdx5e76x4f7fx7528x6b63x7248
FileVersion: 1.0.0.0
Comments: x672cx7a0bx5e8fx4f7fx7528x6613x8bedx8a00x7f16x5199(http://www.eyuyan.com)
ProductName: x6613x8bedx8a00x7a0bx5e8f
ProductVersion: 1.0.0.0
FileDescription: x6613x8bedx8a00x7a0bx5e8f
Translation: 0x0804 0x04b0

Trojan.Kilonepag.25975 also known as:

BkavW32.AIDetectVM.malware1
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Trojan.ProcessHijack.zr0@a4SWkxgb
FireEyeGeneric.mg.ddd0854ab46224e2
CAT-QuickHealTrojan.Kilonepag.25975
Qihoo-360Win32/Trojan.ae5
McAfeeGenericRXAA-AA!DDD0854AB462
CylanceUnsafe
ZillyaTrojan.Black.Win32.52606
AegisLabTrojan.Win32.Generic.lkUP
SangforMalware
BitDefenderGen:Trojan.ProcessHijack.zr0@a4SWkxgb
Cybereasonmalicious.ab4622
CyrenW32/Agent.EW.gen!Eldorado
SymantecML.Attribute.HighConfidence
APEXMalicious
AvastWin32:PWSX-gen [Trj]
ClamAVWin.Malware.Zusy-6840460-0
KasperskyHEUR:Trojan.Win32.Generic
NANO-AntivirusTrojan.Win32.FlyStudio.fgvnhc
RisingStealer.QQpass!1.B69F (CLOUD)
Ad-AwareGen:Trojan.ProcessHijack.zr0@a4SWkxgb
EmsisoftGen:Trojan.ProcessHijack.zr0@a4SWkxgb (B)
ComodoWorm.Win32.Dropper.RA@1qraug
F-SecureTrojan.TR/PSW.QQpass.wolut
DrWebTrojan.DownLoader26.64104
VIPRETrojan.Win32.Generic!BT
McAfee-GW-EditionBehavesLike.Win32.Generic.th
SophosGeneric PUA CH (PUA)
SentinelOneStatic AI – Malicious PE
JiangminTrojan/PSW.QQPass.mra
AviraTR/PSW.QQpass.wolut
Antiy-AVLGrayWare/Win32.Unwaders
MicrosoftTrojanDownloader:Win32/Emotet!ml
ArcabitTrojan.ProcessHijack.EB90A1
ZoneAlarmHEUR:Trojan.Win32.Generic
GDataWin32.Packed.PSE.1RYG8S7
CynetMalicious (score: 100)
AhnLab-V3Trojan/Win32.Agent.C2640773
Acronissuspicious
BitDefenderThetaGen:NN.ZexaF.34804.zr0@a4SWkxgb
ALYacGen:Trojan.ProcessHijack.zr0@a4SWkxgb
MAXmalware (ai score=100)
VBA32BScope.Trojan.Wacatac
MalwarebytesPUP.Optional.ChinAd
PandaTrj/GdSda.A
ESET-NOD32a variant of Win32/FlyStudio.Injector.D potentially unwanted
TrendMicro-HouseCallTROJ_GEN.R002H0CAA21
TencentWin32.Trojan.Inject.Auto
YandexTrojan.GenAsa!Wv2dZA17YHc
IkarusTrojan-PWS.Win32.QQPass
eGambitUnsafe.AI_Score_99%
FortinetW32/Agent.65CA!tr
AVGWin32:PWSX-gen [Trj]
Paloaltogeneric.ml
CrowdStrikewin/malicious_confidence_100% (W)
MaxSecureDropper.Dinwod.frindll

How to remove Trojan.Kilonepag.25975?

Trojan.Kilonepag.25975 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment