Ransom Trojan

How to remove “Trojan-Ransom.Win32.Crypmod.aamr”?

Malware Removal

The Trojan-Ransom.Win32.Crypmod.aamr is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan-Ransom.Win32.Crypmod.aamr virus can do?

  • Executable code extraction
  • Creates RWX memory
  • Exhibits possible ransomware file modification behavior
  • Creates a hidden or system file
  • Network activity detected but not expressed in API logs
  • Checks the CPU name from registry, possibly for anti-virtualization
  • Appends a known encryptJJS ransomware file extension to files that have been encrypted
  • Anomalous binary characteristics

How to determine Trojan-Ransom.Win32.Crypmod.aamr?



File Info:

crc32: 28B95B25
md5: 1b71c3e764eca44997adc3c8e7eb864b
name: 1B71C3E764ECA44997ADC3C8E7EB864B.mlw
sha1: 8b368c5f86823d60b7a6ab9c7fa3cc90174421e3
sha256: 44b4c8049d9fcd444f36b567730d0231e9b4f897ae4701e7b1c166cbce36a45e
sha512: 6b0af3ee65c0e2f8f633a9f9145684e5a633edbea626ca89ea521627e682c567a2543c796f918b8418aca8db47112093e6ea25ab367a56c1a5e2f7b30da44e00
ssdeep: 3072:KU4tZ35cmfYSe+Pl82QhYviqHrzDbVvASk0vOX0NSvHFa3DDmWp:efx1PrQhYviUrpvhk83m
type: PE32 executable (GUI) Intel 80386 system file, for MS Windows


Version Info:

LegalCopyright: Copyright (C) 2017, bczisadz
FileVersion: 1.3.5
ProductVersion: 1.0.4.11

Trojan-Ransom.Win32.Crypmod.aamr also known as:

BkavW32.AIDetect.malware1
K7AntiVirusTrojan ( 00543e471 )
Elasticmalicious (high confidence)
DrWebTrojan.PWS.Siggen2.8271
CynetMalicious (score: 100)
CAT-QuickHealTrojan.GenericPMF.S4579511
ALYacTrojan.Ransom.GandCrab
CylanceUnsafe
ZillyaTrojan.Crypmod.Win32.703
SangforTrojan.Win32.Save.a
CrowdStrikewin/malicious_confidence_100% (W)
AlibabaRansom:Win32/Genasom.ali1000102
K7GWTrojan ( 00543e471 )
Cybereasonmalicious.764eca
CyrenW32/Kryptik.ND.gen!Eldorado
SymantecPacked.Generic.525
ESET-NOD32a variant of Win32/Kryptik.GMOY
APEXMalicious
AvastWin32:MalwareX-gen [Trj]
ClamAVWin.Packed.Azorult-7596348-0
KasperskyTrojan-Ransom.Win32.Crypmod.aamr
BitDefenderTrojan.Brsecmon.1
NANO-AntivirusTrojan.Win32.Crypmod.fkekln
ViRobotTrojan.Win32.R.Agent.228352.AK
MicroWorld-eScanTrojan.Brsecmon.1
TencentWin32.Trojan.Crypmod.Dztx
Ad-AwareTrojan.Brsecmon.1
SophosML/PE-A + Mal/GandCrab-G
ComodoTrojWare.Win32.Ransom.Gandcrab.GC@7zlhhh
BitDefenderThetaGen:NN.ZexaF.34758.nu0@a8f7Kbhi
VIPRETrojan.Win32.Generic!BT
TrendMicroTrojan.Win32.SODINOK.SM.hp
McAfee-GW-EditionBehavesLike.Win32.Upatre.dm
FireEyeGeneric.mg.1b71c3e764eca449
EmsisoftTrojan.Brsecmon.1 (B)
JiangminTrojan.Crypmod.kv
AviraHEUR/AGEN.1107191
eGambitUnsafe.AI_Score_96%
Antiy-AVLTrojan/Generic.ASMalwS.29CB6E7
MicrosoftTrojan:Win32/GandCrab.GD!MTB
ArcabitTrojan.Brsecmon.1
AegisLabTrojan.Win32.Generic.mmvM
GDataTrojan.Brsecmon.1
AhnLab-V3Trojan/Win32.Gandcrab.C2823344
McAfeeTrojan-FPST!1B71C3E764EC
MAXmalware (ai score=100)
VBA32BScope.Trojan.Vigorf
MalwarebytesTrojan.MalPack.GS
PandaTrj/GdSda.A
TrendMicro-HouseCallTrojan.Win32.SODINOK.SM.hp
RisingTrojan.Generic@ML.99 (RDML:wiTWGgmTO+v1ncBWzZN2Vw)
YandexTrojan.GenAsa!O/zLcdCqWME
IkarusTrojan-Ransom.GandCrab
FortinetW32/Kryptik.GNAQ!tr
AVGWin32:MalwareX-gen [Trj]
Paloaltogeneric.ml

How to remove Trojan-Ransom.Win32.Crypmod.aamr?

Trojan-Ransom.Win32.Crypmod.aamr removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment