Trojan

What is “Trojan.Win32.Ekstak.akeba”?

Malware Removal

The Trojan.Win32.Ekstak.akeba is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Win32.Ekstak.akeba virus can do?

  • Executable code extraction
  • Creates RWX memory
  • Reads data out of its own binary image
  • Drops a binary and executes it
  • Network activity detected but not expressed in API logs

How to determine Trojan.Win32.Ekstak.akeba?



File Info:

crc32: 302ABE99
md5: 2a338bf49a12a63aee2c0777402abe4f
name: 2A338BF49A12A63AEE2C0777402ABE4F.mlw
sha1: e9d40d820740325ad0ae9ceff3551858a8187f9c
sha256: 22b3e79ea6e48dcfa38a6fb24dd262399d2ac5a073936dad54f795706aab48aa
sha512: 01c232e3c5b748ad5b518c7fa1b2baa3025e89e16e30a0b72bea5a3484cc21bcb149843e78f21b65d110163ec999e9b7381120ce9d98c865d6f53d51b6b1c081
ssdeep: 98304:PX4Qg0nFYraquO2Ndx9SMIoFrCVptzXSciMDr2JBL0Lyazx14:vVFYGlO4nSPVPzXTr2H0Lya0
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright:                                                                                                     
FileVersion:                     
CompanyName:                                                             
Comments: This installation was built with Inno Setup.
ProductName: Aut                                                         
ProductVersion: 8.9.11.4                                          
FileDescription: Aut Setup                                                   
OriginalFileName:                                                   
Translation: 0x0000 0x04b0

Trojan.Win32.Ekstak.akeba also known as:

K7AntiVirusTrojan ( 005722fe1 )
Elasticmalicious (high confidence)
DrWebTrojan.Zadved.1686
CynetMalicious (score: 99)
CylanceUnsafe
AlibabaTrojanDropper:Win32/Ekstak.ec991d89
K7GWTrojan ( 005722fe1 )
CyrenW32/Agent.CPC.gen!Eldorado
SymantecTrojan.Gen.MBT
ESET-NOD32a variant of Win32/TrojanDropper.Agent.SLC
APEXMalicious
AvastNSIS:Downloader-ADB [Trj]
KasperskyTrojan.Win32.Ekstak.akeba
TencentWin32.Trojan.Ekstak.Hqvj
SophosMal/Generic-R + Troj/Agent-BGXK
McAfee-GW-EditionBehavesLike.Win32.CSDImonetize.rc
EmsisoftAdware.Downloader (A)
SentinelOneStatic AI – Malicious PE
AviraHEUR/AGEN.1142804
MicrosoftTrojan:Win32/Sabsik.FL.A!ml
GDataWin32.Backdoor.Bodelph.LHUERK
McAfeeArtemis!2A338BF49A12
VBA32Trojan.Zadved
MalwarebytesAdware.DownloadAssistant
YandexTrojan.Ekstak!Fh5TsyqY9FA
IkarusPUA.Optional.Install
FortinetRiskware/Ekstak
AVGNSIS:Downloader-ADB [Trj]
Paloaltogeneric.ml

How to remove Trojan.Win32.Ekstak.akeba?

Trojan.Win32.Ekstak.akeba removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment