Ransom Trojan

Trojan.Ransom.AHW (B) removal

Malware Removal

The Trojan.Ransom.AHW (B) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Ransom.AHW (B) virus can do?

  • A process attempted to delay the analysis task.
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX

Related domains:

z.whorecord.xyz
a.tomx.xyz

How to determine Trojan.Ransom.AHW (B)?



File Info:

crc32: B720A89A
md5: 174c1a5e0dc263477d3b1dad9170c366
name: 174C1A5E0DC263477D3B1DAD9170C366.mlw
sha1: a3e0ce5ed9c19eccd6d69ef85362788555e7b43e
sha256: 62010ae6b25999cbc37c935c163285f571294f4732965c66b9233a7573c13c10
sha512: bc41efaf67b19230aa7a4a93e42bfec18244427cb3d2629a17c9967dee18f18ff17af34694ee4320678ed31073e36e9185f52c310a7e5c82f81fefdb2a5c107f
ssdeep: 384:btSIGId4X5U6YrnKB+F76RcPx5Zw94IqDpZ5+YDBg0vH8l0mWLMcb:btSIGNFYra+FPx5ZnIqDpZ53HH8cL9
type: PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed


Version Info:

0: [No Data]

Trojan.Ransom.AHW (B) also known as:

BkavW32.AIDetect.malware1
K7AntiVirusTrojan ( 0054d1101 )
Elasticmalicious (high confidence)
DrWebTrojan.DownLoad3.35002
CynetMalicious (score: 100)
CAT-QuickHealDdos.Nitol.8116
ALYacTrojan.Ransom.AHW
CylanceUnsafe
ZillyaTrojan.ServStart.Win32.3413
SangforTrojan.Win32.Save.a
CrowdStrikewin/malicious_confidence_60% (D)
AlibabaTrojan:Win32/ServStart.f720b105
K7GWTrojan ( 0054d1101 )
Cybereasonmalicious.e0dc26
BaiduWin32.Trojan.ServStart.ax
CyrenW32/Cridex.J.gen!Eldorado
SymantecTrojan.Dropper
ESET-NOD32Win32/ServStart.AD
APEXMalicious
AvastWin32:Malware-gen
ClamAVWin.Trojan.Generic-6297788-0
KasperskyTrojan.Win32.ServStart.bok
BitDefenderTrojan.Ransom.AHW
NANO-AntivirusTrojan.Win32.ServStart.dicskv
ViRobotTrojan.Win32.Agent.27668
MicroWorld-eScanTrojan.Ransom.AHW
TencentMalware.Win32.Gencirc.10b63321
Ad-AwareTrojan.Ransom.AHW
SophosTroj/Nitol-AC
ComodoMalware@#i7jmr2f5owpa
BitDefenderThetaAI:Packer.8005A6741E
VIPRETrojan.Win32.Generic!BT
McAfee-GW-EditionBehavesLike.Win32.Generic.mc
FireEyeGeneric.mg.174c1a5e0dc26347
EmsisoftTrojan.Ransom.AHW (B)
SentinelOneStatic AI – Malicious PE
JiangminTrojan/ServStart.by
AviraTR/ATRAPS.Gen
eGambitTrojan.Generic
Antiy-AVLTrojan/Generic.ASMalwS.CB47D2
KingsoftWin32.Heur.KVM005.a.(kcloud)
MicrosoftDDoS:Win32/Nitol.B
ArcabitTrojan.Ransom.AHW
SUPERAntiSpywareTrojan.Agent/Gen-Downloader
ZoneAlarmHEUR:Trojan-DDoS.Win32.Nitol.gen
GDataTrojan.Ransom.AHW
TACHYONTrojan/W32.ServStart.51712.B
AhnLab-V3Trojan/Win32.Dropper.R125579
Acronissuspicious
McAfeeArtemis!174C1A5E0DC2
MAXmalware (ai score=89)
VBA32BScope.Trojan.Dynamer
PandaTrj/Genetic.gen
RisingBackdoor.Overie!1.64BD (CLASSIC)
YandexTrojan.ServStart!n6NVfQfSPCU
IkarusTrojan.Win32.ServStart
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/ServerStart.AD!tr
AVGWin32:Malware-gen
Paloaltogeneric.ml
Qihoo-360Win32/DDoS.Nitol.HwsBEpsA

How to remove Trojan.Ransom.AHW (B)?

Trojan.Ransom.AHW (B) removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment