Trojan

Trojan.NSIS.Cayu.epi removal tips

Malware Removal

The Trojan.NSIS.Cayu.epi is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.NSIS.Cayu.epi virus can do?

  • Executable code extraction
  • Creates RWX memory
  • A process attempted to delay the analysis task.
  • Reads data out of its own binary image
  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

How to determine Trojan.NSIS.Cayu.epi?



File Info:

crc32: 72C0E18A
md5: c63294b4f6d907f4116e60bf28ea936d
name: C63294B4F6D907F4116E60BF28EA936D.mlw
sha1: 203007a18a99212219641e8aba1de42fb6a4f8d6
sha256: 3171f69400093f7117167a991807f54966b88199bb7bc57f80fbcf07ccdc5d56
sha512: 78d5b79d862f893fb7b0f684eeaf3cb1384c1acb0fe00fc705d42c5fde75b74fd5a38c8e92e298c8fda5d2de16b6f82d6a94ab2ae4c1112132bc70ca90a5fce9
ssdeep: 12288:0RtFMzSGcWAhil4IrkCX2dVDOhWMm+UYD2/fgErRk40sJJyyRck1a2c15:4FMzSGZj4WkGAD3y2PrF/JJNRckQ/j
type: PE32 executable (GUI) Intel 80386, for MS Windows, Nullsoft Installer self-extracting archive


Version Info:

LegalCopyright: (C) 2016 Oracle
InternalName: VBoxWindowsAdditions-x86.exe
FileVersion: VBox 5.0.1.0
CompanyName: Oracle
ProductName: VBox Guest Additions
ProductVersion: 5.0.1.0
FileDescription: VBox Guest Additions
Translation: 0x040c 0x04e4

Trojan.NSIS.Cayu.epi also known as:

K7AntiVirusTrojan ( 0055e4081 )
LionicTrojan.NSIS.Cayu.4!c
CynetMalicious (score: 100)
ALYacGen:Variant.Ransom.2019
CylanceUnsafe
CrowdStrikewin/malicious_confidence_80% (D)
AlibabaTrojan:Win32/Injector.d4b0e96b
K7GWTrojan ( 0055e4081 )
Cybereasonmalicious.4f6d90
SymantecRansom.Cerber
ESET-NOD32NSIS/Injector.HC
APEXMalicious
AvastWin32:Malware-gen
KasperskyTrojan.NSIS.Cayu.epi
BitDefenderGen:Variant.Ransom.2019
NANO-AntivirusTrojan.Win32.Cayu.ezhwjk
MicroWorld-eScanGen:Variant.Ransom.2019
TencentWin32.Trojan.Inject.Swuc
Ad-AwareGen:Variant.Ransom.2019
SophosMal/Generic-R + Mal/Miuref-L
ComodoMalware@#36be7voy41pl2
VIPRETrojan.Win32.Generic!BT
TrendMicroRansom_NSISRansom.SM001
McAfee-GW-EditionBehavesLike.Win32.ObfusRansom.bc
FireEyeGen:Variant.Ransom.2019
EmsisoftGen:Variant.Ransom.2019 (B)
AviraHEUR/AGEN.1102533
KingsoftWin32.Troj.Inject.(kcloud)
MicrosoftTrojan:Win32/Occamy.B
ArcabitTrojan.Ransom.D7E3
SUPERAntiSpywareRansom.Locky/Variant
GDataGen:Variant.Ransom.2019
AhnLab-V3Trojan/Win32.Locky.C1613392
McAfeeArtemis!C63294B4F6D9
MAXmalware (ai score=96)
VBA32Trojan.Cayu
MalwarebytesRansom.Cerber
PandaTrj/CI.A
TrendMicro-HouseCallRansom_NSISRansom.SM001
FortinetW32/Injector.HC!tr
AVGWin32:Malware-gen
Paloaltogeneric.ml

How to remove Trojan.NSIS.Cayu.epi?

Trojan.NSIS.Cayu.epi removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment