Trojan-Spy.Win32.Stealer.ccku removal guide

The Trojan-Spy.Win32.Stealer.ccku is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Trojan-Spy.Win32.Stealer.ccku virus can do?

The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid

How to determine Trojan-Spy.Win32.Stealer.ccku?


File Info:
name: DC4B3D4D9E26F7349929.mlw
path: /opt/CAPEv2/storage/binaries/096f8d83a9ec93af6b50f492c128f92044d4595b0fc5522d4382050887713652
crc32: B7CB2C6E
md5: dc4b3d4d9e26f734992957a04925a4cb
sha1: 1e245facc70dc79e6df78dc99dfd0cb15a80672a
sha256: 096f8d83a9ec93af6b50f492c128f92044d4595b0fc5522d4382050887713652
sha512: dc0f99f7efc135c3a0fde3fd913a8ed4a20b4f88ec4e50bf48e3825d3f1c8407df4be3f538cf8cc783c8532bdb2903acbc3fde0eb72914d53e11fa4e2bfcddf4
ssdeep: 12288:5oTKe0GTzyF/haNYztEt+LEX131KfU/Lafj6H9zwibX17uuY80jVGAAmyXpITv:wyF/haNMNfj6HSibX1vXIz
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T1F915AE70798D803ADDF720B662ECB924457EE4B01B2E02C757C897EED610DE17B32696
sha3_384: d98e7cac626f44051568f2d0198f8a2da57736796c83c24f659555d0e23627f313ab1f2deb16701cfacbf527e935edf8
ep_bytes: e941a70300e9addf0500e9ada20900e9
timestamp: 2022-06-19 12:38:30

Version Info:
0: [No Data]

Trojan-Spy.Win32.Stealer.ccku also known as:

Bkav	W32.AIDetect.malware2
Lionic	Trojan.Win32.Stealer.l!c
MicroWorld-eScan	Trojan.GenericKD.49208345
FireEye	Trojan.GenericKD.49208345
McAfee	RDN/Generic PWS.y
Cylance	Unsafe
Sangfor	Spyware.Win32.Stealer.gen
K7AntiVirus	Trojan ( 005948ce1 )
Alibaba	TrojanSpy:Win32/Stealer.4bb71e7e
K7GW	Trojan ( 005948ce1 )
Cyren	W32/Sabsik.AK.gen!Eldorado
ESET-NOD32	a variant of Win32/GenKryptik_AGen.GW
APEX	Malicious
Kaspersky	Trojan-Spy.Win32.Stealer.ccku
BitDefender	Trojan.GenericKD.49208345
NANO-Antivirus	Trojan.Win32.Stealer.jpjwii
Avast	Win32:CrypterX-gen [Trj]
Tencent	Win32.Trojan-spy.Stealer.Wsjz
Ad-Aware	Trojan.GenericKD.49208345
Sophos	Troj/Krypt-NG
DrWeb	Trojan.PWS.Stealer.32450
TrendMicro	TrojanSpy.Win32.REDLINE.YXCFTZ
McAfee-GW-Edition	RDN/Generic PWS.y
Emsisoft	Trojan.GenericKD.49208345 (B)
Ikarus	Trojan.Win32.Krypt
GData	Win32.Trojan.PSE.1FXRHIV
Jiangmin	TrojanSpy.Stealer.xtn
Avira	TR/Spy.Stealer.bffzs
MAX	malware (ai score=81)
Microsoft	Trojan:Win32/Wacatac.B!ml
Cynet	Malicious (score: 100)
AhnLab-V3	Trojan/Win.Generic.R499706
ALYac	Trojan.GenericKD.49208345
Malwarebytes	Malware.AI.3864609108
TrendMicro-HouseCall	TrojanSpy.Win32.REDLINE.YXCFTZ
Rising	Trojan.Generic@AI.98 (RDML:x54IJGXtKz1A0hW/NvxkLw)
MaxSecure	Trojan.Malware.121218.susgen
Fortinet	W32/Agent.FYCP!tr
AVG	Win32:CrypterX-gen [Trj]

How to remove Trojan-Spy.Win32.Stealer.ccku?

Trojan-Spy.Win32.Stealer.ccku removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X