Ransom • Trojan

Trojan-Ransom.Win32.Cryptor.ehv information

The Trojan-Ransom.Win32.Cryptor.ehv is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Trojan-Ransom.Win32.Cryptor.ehv virus can do?

The binary likely contains encrypted or compressed data.
Anomalous binary characteristics

How to determine Trojan-Ransom.Win32.Cryptor.ehv?


File Info:
crc32: B1E2BAE3
md5: 3aa848aae1637772efa532c2c3c2d3ce
name: 3AA848AAE1637772EFA532C2C3C2D3CE.mlw
sha1: 634ca880daee194ec5711728bff3152800640981
sha256: a936a86e590b5c7171b988216c9cfa3daacb41520bdf65166e632f775f4ec9d7
sha512: dd97af65b664370bcb180f7fcfbf5326a6060d407f37a49ab9426f85cf0f4cff1397ed6413922c21adaa0d79082eaf2a1d27b471a93c31f8bea940d987f80862
ssdeep: 768:CmmkYHlMuW3ta7pbu2MFCvPFhNJ3znhy:ACuca7pbpMFCNJ7o
type: PE32+ executable (GUI) x86-64, for MS Windows

Version Info:
0: [No Data]

Trojan-Ransom.Win32.Cryptor.ehv also known as:

K7AntiVirus	Trojan ( 0057cbd51 )
CAT-QuickHeal	Trojanransom.Cryptor
McAfee	Artemis!3AA848AAE163
Cylance	Unsafe
Sangfor	Ransom.Win32.Cryptor.ehv
CrowdStrike	win/malicious_confidence_90% (W)
Alibaba	Ransom:Win64/Cryptor.772b3618
K7GW	Trojan ( 0057cbd51 )
Cybereason	malicious.0daee1
Symantec	Trojan.Gen.MBT
ESET-NOD32	a variant of Win64/GenKryptik.FFNR
APEX	Malicious
Avast	Win64:Malware-gen
Cynet	Malicious (score: 100)
Kaspersky	Trojan-Ransom.Win32.Cryptor.ehv
BitDefender	Gen:Variant.Mikey.122820
MicroWorld-eScan	Gen:Variant.Mikey.122820
Tencent	Win32.Trojan.Cryptor.Lmlc
Ad-Aware	Gen:Variant.Mikey.122820
Sophos	Mal/Generic-S
VIPRE	Trojan.Win32.Generic!BT
TrendMicro	Ransom.Win64.CONTICRYPT.USMANF621
McAfee-GW-Edition	BehavesLike.Win64.Generic.mc
FireEye	Generic.mg.3aa848aae1637772
Emsisoft	Gen:Variant.Mikey.122820 (B)
Webroot	W32.Trojan.Gen
Avira	TR/Crypt.Agent.lajfr
Microsoft	Ransom:Win64/ContiCrypt.PG!MTB
GData	Gen:Variant.Mikey.122820
AhnLab-V3	Ransomware/Win.Generic.C4479628
MAX	malware (ai score=81)
TrendMicro-HouseCall	Ransom.Win64.CONTICRYPT.USMANF621
Ikarus	Trojan.Win64.Krypt
MaxSecure	Trojan.Malware.118488803.susgen
Fortinet	W64/GenKryptik.FFNR!tr
AVG	Win64:Malware-gen
Paloalto	generic.ml

How to remove Trojan-Ransom.Win32.Cryptor.ehv?

Trojan-Ransom.Win32.Cryptor.ehv removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X