Trojan

Trojan.Win32.Copak.znlr malicious file

Malware Removal

The Trojan.Win32.Copak.znlr is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Win32.Copak.znlr virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Sample contains Overlay data
  • Reads data out of its own binary image
  • CAPE extracted potentially suspicious content
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid
  • Creates a copy of itself
  • Deletes executed files from disk
  • Anomalous binary characteristics
  • Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine Trojan.Win32.Copak.znlr?



File Info:

name: 9273F8130F02D19055BE.mlw
path: /opt/CAPEv2/storage/binaries/39a7e42c03abe8467cdfdd5e5dd8c5c04642d1e2fa70bfdf185951b440810a3c
crc32: 410E99A3
md5: 9273f8130f02d19055beaf05f0cf529e
sha1: 0bc83a65654811ef94fc926cd50f242cb0865e55
sha256: 39a7e42c03abe8467cdfdd5e5dd8c5c04642d1e2fa70bfdf185951b440810a3c
sha512: 346184baeb72d45b991cb517516f75571e20689d9177b833cd7e0d448d1cba3e6a6ae77caf98d2edbbb59098ab7703ac419ae8d1a1f6d2f93edd59fb1881dd1d
ssdeep: 12288:IpGLUu0eproCPGDdonRlYtBjVDa/ZS4fD2HnhvMCtjW:IIIuDoCPGDeLYt3a/ZS4fDwueC
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T16365F4391F9548B7CC76527E691EAEE280116C3C6E12F2713389B9B63E227D8F747520
sha3_384: becf70f67787a834095e47fee83708053739e056698b112372445ed8c79d5d631d0503934d250b596186f2f0b4d7d8e1
ep_bytes: abb5c043fbdc44c4fe3d4d557c7725ef
timestamp: 1970-01-01 00:00:00


Version Info:

0: [No Data]

Trojan.Win32.Copak.znlr also known as:

Elasticmalicious (high confidence)
CynetMalicious (score: 100)
McAfeePacked-FJB!9273F8130F02
MalwarebytesCrypt.Trojan.Malicious.DDS
VIPRETrojan.GenericKDZ.98449
SangforTrojan.Win32.Save.a
K7AntiVirusTrojan ( 005a45ef1 )
AlibabaTrojan:Win32/Copak.c7837c95
K7GWTrojan ( 005a45ef1 )
CrowdStrikewin/malicious_confidence_100% (W)
BitDefenderThetaGen:NN.ZexaF.36196.C9Z@aaiSldb
CyrenW32/Zusy.EM.gen!Eldorado
SymantecML.Attribute.HighConfidence
tehtrisGeneric.Malware
ESET-NOD32a variant of Win32/Kryptik.GIFY
APEXMalicious
ClamAVWin.Packed.Dridex-9860931-1
KasperskyTrojan.Win32.Copak.znlr
BitDefenderTrojan.GenericKDZ.98449
NANO-AntivirusTrojan.Win32.Copak.jvibhg
MicroWorld-eScanTrojan.GenericKDZ.98449
AvastWin32:Evo-gen [Trj]
TencentTrojan.Win32.Selfmod.ka
TACHYONTrojan/W32.Selfmod
EmsisoftTrojan.GenericKDZ.98449 (B)
F-SecureTrojan.TR/Crypt.Agent.eoiqf
ZillyaTrojan.Kryptik.Win32.2680830
TrendMicroTROJ_GEN.R002C0DEO23
McAfee-GW-EditionBehavesLike.Win32.Generic.tm
Trapminesuspicious.low.ml.score
FireEyeGeneric.mg.9273f8130f02d190
SophosMal/Inject-GJ
SentinelOneStatic AI – Malicious PE
GDataWin32.Trojan.PSE.11YPVZ
AviraTR/Crypt.Agent.eoiqf
Antiy-AVLTrojan/Win32.Kryptik.GIFY
XcitiumTrojWare.Win32.Kryptik.TLS@812zm8
ArcabitTrojan.Generic.D18091
ViRobotTrojan.Win.Z.Kryptik.1507329.DUX
ZoneAlarmTrojan.Win32.Copak.znlr
MicrosoftTrojan:Win32/Glupteba.MT!MTB
GoogleDetected
AhnLab-V3Trojan/Win.OB.C5394211
VBA32Trojan.Copak
ALYacTrojan.GenericKDZ.98449
MAXmalware (ai score=82)
Cylanceunsafe
PandaTrj/Genetic.gen
TrendMicro-HouseCallTROJ_GEN.R002C0DEO23
RisingTrojan.Kryptik!1.B34D (CLASSIC)
IkarusTrojan.Win32.Crypt
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/Kryptik.GIFQ!tr
AVGWin32:Evo-gen [Trj]
DeepInstinctMALICIOUS

How to remove Trojan.Win32.Copak.znlr?

Trojan.Win32.Copak.znlr removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment