Trojan.Win32.Cryprar.od malicious file

The Trojan.Win32.Cryprar.od is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Trojan.Win32.Cryprar.od virus can do?

Reads data out of its own binary image
Network activity detected but not expressed in API logs

How to determine Trojan.Win32.Cryprar.od?


File Info:
crc32: AAD463A1
md5: 3ab98422da879fd7c587c4dc2aeafdb0
name: 3AB98422DA879FD7C587C4DC2AEAFDB0.mlw
sha1: 56ca1d02eda5b578035a872ec551c99afe187af9
sha256: 75591aa9cbda0d790d81cddd62c345b84abcde6a905822e43b8bb02c4c1fdb42
sha512: ba1e1ca7d488be409cb84fc1d14ddef8881186506ad610a14660be0edf3dd3dc3498b60a06d50c02390485251318e09ed0e3c2a89e16c03aaef7e9f53771eca1
ssdeep: 196608:xpLUCg9pMJx/Sm9MuVSbnz0W7AAdXezHjPKym716VH/ft44OLd:xpdg9pk3VWoCARjPKZh0HHS4A
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:
LegalCopyright: Copyright (c) 1999-2018 Igor Pavlov
InternalName: 7zS.sfx
FileVersion: 19.00
CompanyName: Igor Pavlov
ProductName: 7-Zip
ProductVersion: 19.00
FileDescription: 7z Setup SFX
OriginalFilename: 7zS.sfx.exe
Translation: 0x0409 0x04b0

Trojan.Win32.Cryprar.od also known as:

K7AntiVirus	Trojan ( 0057be3e1 )
DrWeb	Trojan.Siggen15.40508
Cynet	Malicious (score: 100)
CAT-QuickHeal	Trojan.SabsikIH.S21959152
ALYac	Gen:Variant.Jaik.45703
Cylance	Unsafe
K7GW	Trojan ( 0057be3e1 )
Cybereason	malicious.2da879
Cyren	W32/Fugrafa.X.gen!Eldorado
ESET-NOD32	multiple detections
Avast	Win32:CrypterX-gen [Trj]
ClamAV	Win.Packed.Barys-9859531-0
Kaspersky	Trojan.Win32.Cryprar.od
BitDefender	Gen:Variant.Jaik.45703
MicroWorld-eScan	Gen:Variant.Jaik.45703
Ad-Aware	Gen:Variant.Jaik.45703
Sophos	Mal/Generic-S
BitDefenderTheta	Gen:NN.ZedlaF.34266.n88baOE@FOp
TrendMicro	Trojan.Win32.DEYMA.AH
McAfee-GW-Edition	RDN/Wacapew
FireEye	Gen:Variant.Jaik.45703
Emsisoft	Gen:Variant.Jaik.45703 (B)
Jiangmin	Backdoor.Mokes.erv
Avira	TR/Crypt.XPACK.Gen7
Antiy-AVL	Trojan/Generic.ASMalwS.34CE52C
Kingsoft	Win32.Hack.MSIL.bi.(kcloud)
Microsoft	Trojan:MSIL/AgentTesla.LEG!MTB
GData	Gen:Variant.Jaik.45703
MAX	malware (ai score=85)
VBA32	BScope.TrojanRansom.FileCryptor
Malwarebytes	Trojan.Dropper.SFX.Generic
Panda	Trj/CI.A
TrendMicro-HouseCall	TROJ_GEN.R002H0CKE21
Rising	Stealer.FBAdsCard!1.CE03 (CLASSIC:aKgpV2SKnjRvr4lu0t09Fg)
Fortinet	W32/BSE.4Q7Q!tr
AVG	Win32:CrypterX-gen [Trj]

How to remove Trojan.Win32.Cryprar.od?

Trojan.Win32.Cryprar.od removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X