Categories: SpyTrojan

What is “Trojan-Spy.Win32.Stealer.aij”?

The Trojan-Spy.Win32.Stealer.aij is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Trojan-Spy.Win32.Stealer.aij virus can do?

Executable code extraction
Creates RWX memory
HTTP traffic contains suspicious features which may be indicative of malware related traffic
Performs some HTTP requests
The binary likely contains encrypted or compressed data.
Attempts to repeatedly call a single API many times in order to delay analysis time
Collects information to fingerprint the system
Anomalous binary characteristics

How to determine Trojan-Spy.Win32.Stealer.aij?


File Info:
crc32: 878B30A8md5: 618fc28f34f18a3a22ce02bf30a9165ename: 618FC28F34F18A3A22CE02BF30A9165E.mlwsha1: ae6d88e71ca865a31dc337bb34ce9eb1fe6043a1sha256: 626e32444b6dc8238fa74f3804d1ee801c62736e13e0bfe264ed0fdf68719fe1sha512: 58d4e420379507a396be8ebbf1a9aa987970f49e5b74f678ec0e2a47d507ff2b19e161b8a38206668de268a09c15bde52c829bbbbf854a76965b9f4d6c9b7187ssdeep: 6144:nULBODYHXgBcsjh7iZAO9HhLxXwWTbRll:UNODYHQKsyAOthLpbRlltype: PE32 executable (GUI) Intel 80386, for MS Windows
Version Info:
InternalName: osdksdtgsdfg.exeFileVersion: 1.0.0.1ProductVersion: 1.0.0.1Translation: 0x0809 0x04b0

Trojan-Spy.Win32.Stealer.aij also known as:

Bkav	W32.AIDetect.malware1
K7AntiVirus	Trojan ( 00516fdf1 )
Elastic	malicious (high confidence)
DrWeb	Trojan.PWS.Stealer.24814
Cynet	Malicious (score: 100)
ALYac	Trojan.Brsecmon.1
Cylance	Unsafe
Zillya	Trojan.Stealer.Win32.845
Sangfor	Trojan.Win32.Save.a
CrowdStrike	win/malicious_confidence_100% (W)
Alibaba	TrojanSpy:Win32/Stealer.c349d0f8
K7GW	Trojan ( 00516fdf1 )
Cybereason	malicious.f34f18
Cyren	W32/Kryptik.JW.gen!Eldorado
Symantec	Packed.Generic.525
ESET-NOD32	a variant of Win32/Kryptik.GLLG
APEX	Malicious
Avast	Win32:MalwareX-gen [Trj]
Kaspersky	Trojan-Spy.Win32.Stealer.aij
BitDefender	Trojan.Brsecmon.1
NANO-Antivirus	Trojan.Win32.Stealer.fiuyot
MicroWorld-eScan	Trojan.Brsecmon.1
Tencent	Win32.Trojan-spy.Stealer.Wncx
Ad-Aware	Trojan.Brsecmon.1
Sophos	ML/PE-A + Mal/GandCrab-G
Comodo	TrojWare.Win32.Ransom.Gandcrab.S@7wwdn1
BitDefenderTheta	Gen:NN.ZexaF.34796.ou0@aWVBBxbi
VIPRE	Trojan.Win32.Generic!BT
TrendMicro	TROJ_FRS.0NA003JA18
McAfee-GW-Edition	BehavesLike.Win32.Generic.dc
FireEye	Generic.mg.618fc28f34f18a3a
Emsisoft	Trojan.Brsecmon.1 (B)
SentinelOne	Static AI – Malicious PE
Jiangmin	TrojanSpy.Stealer.eg
Webroot	W32.Adware.Installcore
Avira	HEUR/AGEN.1102756
Antiy-AVL	Trojan/Generic.ASMalwS.286D8BA
Microsoft	Ransom:Win32/Gandcrab.G!MTB
Arcabit	Trojan.Brsecmon.1
GData	Win32.Trojan-Ransom.GandCrab.U
AhnLab-V3	Trojan/Win32.Agent.C2742968
Acronis	suspicious
McAfee	Trojan-FQDF!618FC28F34F1
MAX	malware (ai score=99)
VBA32	BScope.Trojan.Propagate
Malwarebytes	Trojan.MalPack
Panda	Trj/GdSda.A
TrendMicro-HouseCall	TROJ_FRS.0NA003JA18
Rising	Malware.Obscure!1.A3BB (CLASSIC)
Yandex	Trojan.GenAsa!m0DyGNtl46c
Ikarus	Trojan-Ransom.GandCrab
Fortinet	W32/Kryptik.GLKY!tr
AVG	Win32:MalwareX-gen [Trj]
Paloalto	generic.ml
Qihoo-360	Win32/Ransom.GandCrab.HwoCEpsA