Trojan

Trojan-PSW.Win32.Coins.kpo removal guide

Malware Removal

The Trojan-PSW.Win32.Coins.kpo is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan-PSW.Win32.Coins.kpo virus can do?

  • Executable code extraction
  • Creates RWX memory
  • Reads data out of its own binary image
  • Drops a binary and executes it
  • Collects information to fingerprint the system

Related domains:

spartaqs.bit

How to determine Trojan-PSW.Win32.Coins.kpo?



File Info:

crc32: 4501053F
md5: 6e159ba340349b8280bc5f4d285b2000
name: 6E159BA340349B8280BC5F4D285B2000.mlw
sha1: 4055a4abe86d58e327355b70dff60b9b45463f01
sha256: 2ecdadd52353414554fc35d8afc83ce46006b8c9526e3b2f35ab230186a6072c
sha512: 2d32482084cb9ca8524da248a86ad57fb463c640d0bca2a8575cf310f892dfca37872d085c01381f876f909843cb72323effe1701b19e44f073c202906bfd2d2
ssdeep: 12288:4yIFugu76oQjMJZDxQH/OOC7d0BRVvG9C+ZO:4yIk3wQZDxOxMuBRUq
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright:                                                                                                     
FileVersion:                     
CompanyName:                                                             
Comments: This installation was built with Inno Setup.
ProductName: LT                                                          
ProductVersion: v2                                                
FileDescription: LT Setup                                                    
Translation: 0x0000 0x04b0

Trojan-PSW.Win32.Coins.kpo also known as:

K7AntiVirusPassword-Stealer ( 0052f9a71 )
LionicTrojan.Win32.Coins.4!c
Elasticmalicious (high confidence)
CynetMalicious (score: 99)
ALYacTrojan.GenericKD.40492956
CylanceUnsafe
ZillyaTrojan.Coins.Win32.1353
CrowdStrikewin/malicious_confidence_80% (D)
AlibabaTrojanPSW:Win32/Coins.88269c79
K7GWPassword-Stealer ( 0052f9a71 )
Cybereasonmalicious.340349
CyrenW32/Delf.NGNB-6839
SymantecTrojan.Gen.MBT
ESET-NOD32Win32/PSW.Delf.OSF
APEXMalicious
AvastWin32:Malware-gen
KasperskyTrojan-PSW.Win32.Coins.kpo
BitDefenderTrojan.GenericKD.40492956
NANO-AntivirusTrojan.Win32.Coins.fhuisg
MicroWorld-eScanTrojan.GenericKD.40492956
TencentWin32.Trojan-qqpass.Qqrob.Wpjp
SophosMal/Generic-S
ComodoMalware@#1xsarq6b9t32s
McAfee-GW-EditionBehavesLike.Win32.AdwareFileTour.gc
FireEyeTrojan.GenericKD.40492956
EmsisoftTrojan.GenericKD.40492956 (B)
SentinelOneStatic AI – Suspicious PE
AviraHEUR/AGEN.1112397
Antiy-AVLTrojan/Generic.ASMalwS.2809DB1
MicrosoftTrojan:Win32/Skeeyah.A!bit
GDataTrojan.GenericKD.40492956
AhnLab-V3Malware/Win32.Generic.C2724724
McAfeeArtemis!6E159BA34034
MAXmalware (ai score=100)
MalwarebytesMalware.AI.2941715482
PandaTrj/CI.A
RisingTrojan.Generic@ML.100 (RDML:ZUfnfuHpaqUCo9lw9Sb5Ig)
YandexTrojan.PWS.Coins!+O9LjLLSIcw
IkarusTrojan-Ransom.GandCrab
FortinetW32/Coins.KPO!tr.pws
AVGWin32:Malware-gen
Paloaltogeneric.ml

How to remove Trojan-PSW.Win32.Coins.kpo?

Trojan-PSW.Win32.Coins.kpo removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment