Ransom Trojan

Trojan-Ransom.Win32.Blocker.kjb removal

Malware Removal

The Trojan-Ransom.Win32.Blocker.kjb is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan-Ransom.Win32.Blocker.kjb virus can do?

  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid
  • Anomalous binary characteristics

How to determine Trojan-Ransom.Win32.Blocker.kjb?



File Info:

name: 5D6A23F8AC0ED10F3BCD.mlw
path: /opt/CAPEv2/storage/binaries/ee00431b4be823b219af88297fd76f271207eb3228a00a05cf230d0149e455a8
crc32: 87B15A24
md5: 5d6a23f8ac0ed10f3bcdd6808d652e7a
sha1: 1396ce6eb1a13d7f780e6f5ce28791b63df1d3fa
sha256: ee00431b4be823b219af88297fd76f271207eb3228a00a05cf230d0149e455a8
sha512: dc4d3e85f9bd4fb767153351850035f405d2059e36b6e51bc79fbcc6ea2f78f60177a0829b0f43ae4b887aef42aff7758e927c941e4e35f20c38ea18226ce1a5
ssdeep: 12288:BAax/jiB6lc+PHYzW0ObNksTAax/jiB6lc+PHYzW0ObNksU:B3gB8c2eSksT3gB8c2eSksU
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T118154A29E5524837D1123AF48C4E679954117FE12D33A5163AF43E4AEF3A3C3A9270EE
sha3_384: c52ed34ba41b5c5d84cae2174095ed564808be9ebc1c313785e9778aac8e56bf52a22695bef0e07b10e50ccba5d19ef4
ep_bytes: 558becb9280000006a006a004975f953
timestamp: 1992-06-19 22:22:17


Version Info:

0: [No Data]

Trojan-Ransom.Win32.Blocker.kjb also known as:

BkavW32.AIDetect.malware2
LionicTrojan.Win32.Blocker.maIV
Elasticmalicious (high confidence)
DrWebTrojan.Inject1.14235
MicroWorld-eScanTrojan.GenericKDZ.83868
FireEyeGeneric.mg.5d6a23f8ac0ed10f
McAfeeGenericRXDW-VI!5D6A23F8AC0E
SangforTrojan.Win32.Save.a
CrowdStrikewin/malicious_confidence_70% (W)
AlibabaRansom:Win32/Blocker.5bd
K7GWTrojan ( 004133791 )
K7AntiVirusTrojan ( 004133791 )
VirITTrojan.Win32.Generic.AXZR
CyrenW32/DelfInject.FJ.gen!Eldorado
tehtrisGeneric.Malware
ESET-NOD32a variant of Win32/Injector.ZUN
TrendMicro-HouseCallRansom_Blocker.R002C0CF222
ClamAVWin.Trojan.Agent-1349935
KasperskyTrojan-Ransom.Win32.Blocker.kjb
BitDefenderTrojan.GenericKDZ.83868
NANO-AntivirusTrojan.Win32.Blocker.dennbq
TencentTrojan-ransom.Win32.Blocker.kjb
Ad-AwareTrojan.GenericKDZ.83868
EmsisoftTrojan.GenericKDZ.83868 (B)
ComodoTrojWare.Win32.Injector.zun@5gd7ed
TrendMicroRansom_Blocker.R002C0CF222
McAfee-GW-EditionBehavesLike.Win32.Generic.dh
Trapminemalicious.moderate.ml.score
SophosML/PE-A + Troj/Delf-HOB
Paloaltogeneric.ml
AviraTR/Delflash.A.57
MicrosoftTrojan:Win32/Delflash
ViRobotTrojan.Win32.Z.Injector.933888.EK
GDataWin32.Trojan.PSE1.IY11Z6
CynetMalicious (score: 100)
AhnLab-V3Trojan/Win32.Blocker.C737227
VBA32Hoax.Blocker
ALYacTrojan.GenericKDZ.83868
MAXmalware (ai score=89)
MalwarebytesMalware.AI.1711119077
APEXMalicious
RisingTrojan.Injector!1.DBEE (CLASSIC)
YandexTrojan.GenAsa!a5DpXfnoP88
SentinelOneStatic AI – Malicious PE
MaxSecureTrojan.Malware.121218.susgen
FortinetW32/Injector.YVK!tr
Cybereasonmalicious.8ac0ed
PandaGeneric Suspicious

How to remove Trojan-Ransom.Win32.Blocker.kjb?

Trojan-Ransom.Win32.Blocker.kjb removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment