Spy Trojan

About “Trojan-Spy.Win32.Noon.ayjy” infection

Malware Removal

The Trojan-Spy.Win32.Noon.ayjy is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan-Spy.Win32.Noon.ayjy virus can do?

  • Executable code extraction
  • Creates RWX memory
  • Performs some HTTP requests
  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

Related domains:

redirector.gvt1.com
r4—sn-4g5e6nzz.gvt1.com

How to determine Trojan-Spy.Win32.Noon.ayjy?



File Info:

crc32: E21BA49B
md5: f4c30d8e153e8c0aa5b461dd8aefafc4
name: tmp.exe
sha1: 43d342528ccbef5d77851cdc8d9b6e52239fe99d
sha256: be4992ab0acbbee1cc7c5ef4ef98457089dd679d6a73514f32887e87ebe9defb
sha512: 76f7c91caeceaa445d2c66265805cf7320fd316919c6f6ef1099a6cb5d1e3a8ae18c17a37ecbb82ca7fe448b26d0f0671ef069c026979dbf05170fb6f73b1649
ssdeep: 768:ZLvWDxw/GEKBDzsuJsx/x07VE0Le+F/APjaQEIi+N0ijhmvt4+:N/GFdYqsxp07VE0VFAPOQEc1w
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

Translation: 0x03fc 0x04b0
InternalName: Trst
FileVersion: 2.07
CompanyName: Raodle
ProductName: Laserprint8
ProductVersion: 2.07
OriginalFilename: Trst.exe

Trojan-Spy.Win32.Noon.ayjy also known as:

MicroWorld-eScanGen:Heur.PonyStealer.fm0@oyQ9ptaG
FireEyeGeneric.mg.f4c30d8e153e8c0a
McAfeeFareit-FTA!F4C30D8E153E
CylanceUnsafe
VIPRETrojan.Win32.Generic!BT
SangforMalware
BitDefenderGen:Heur.PonyStealer.fm0@oyQ9ptaG
BitDefenderThetaGen:NN.ZevbaCO.34110.fm0@ayQ9ptaG
SymantecML.Attribute.HighConfidence
APEXMalicious
Paloaltogeneric.ml
GDataGen:Heur.PonyStealer.fm0@oyQ9ptaG
KasperskyTrojan-Spy.Win32.Noon.ayjy
AvastWin32:Malware-gen
RisingTrojan.Injector!1.C624 (CLASSIC)
Ad-AwareGen:Heur.PonyStealer.fm0@oyQ9ptaG
McAfee-GW-EditionBehavesLike.Win32.Generic.mz
Trapminemalicious.high.ml.score
EmsisoftGen:Heur.PonyStealer.fm0@oyQ9ptaG (B)
Endgamemalicious (high confidence)
ArcabitTrojan.PonyStealer.E6F709
ZoneAlarmTrojan-Spy.Win32.Noon.ayjy
MicrosoftTrojan:Win32/Wacatac.C!ml
ALYacGen:Heur.PonyStealer.fm0@oyQ9ptaG
MAXmalware (ai score=84)
MalwarebytesTrojan.GuLoader
ESET-NOD32a variant of Win32/Injector.ELYH
IkarusTrojan.VB.Crypt
eGambitUnsafe.AI_Score_99%
FortinetW32/Injector.ELXZ!tr
AVGWin32:Malware-gen

How to remove Trojan-Spy.Win32.Noon.ayjy?

Trojan-Spy.Win32.Noon.ayjy removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment