Trojan.Win32.Ekstak.akkel (file analysis)

The Trojan.Win32.Ekstak.akkel is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Trojan.Win32.Ekstak.akkel virus can do?

The binary likely contains encrypted or compressed data.
Anomalous binary characteristics

How to determine Trojan.Win32.Ekstak.akkel?


File Info:
crc32: EB2F61EB
md5: e028ce80f164eb8b97634a3294734738
name: E028CE80F164EB8B97634A3294734738.mlw
sha1: f10d444e46f47e94cec6b96223ef0421df10aaf5
sha256: 16ac43222b4ae47b5c01868c7487c0a2eb3aa5a60350fe547cd7fe313905cbe7
sha512: 30b60bcbe6623245cb67999d90b5975db96d627dce3dcf6be3fb7fa18eb7cd98acabb353300c3b11312cdeda3dd829a839fd88cc24cbb7c63542e996dea5e3b6
ssdeep: 49152:H/nBIAOk1odGxAOJ7CHiK18GqtBYPqbvm8kHCIgVyy8OHMqrSegF4r:fnsdGxJ7CHv1jqRmxW1ZXrSeHr
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:
LegalCopyright: (c) Puran Software.  All rights reserved.
InternalName: Puran File Recovery.exe
FileVersion: 1.2.0.0
CompanyName: Puran Software
ProductName: Puran File Recovery
ProductVersion: 1.2.0.0
FileDescription: Puran File Recovery
OriginalFilename: Puran File Recovery.exe
Translation: 0x0000 0x04e4

Trojan.Win32.Ekstak.akkel also known as:

K7AntiVirus	Trojan ( 00580bdb1 )
Elastic	malicious (high confidence)
Cynet	Malicious (score: 100)
ALYac	Trojan.GenericKD.47321056
Cylance	Unsafe
Sangfor	Trojan.Win32.Save.a
CrowdStrike	win/malicious_confidence_60% (W)
Alibaba	Trojan:Win32/Ekstak.356d2394
K7GW	Trojan ( 00580bdb1 )
Cybereason	malicious.e46f47
Cyren	W32/Kryptik.FQU.gen!Eldorado
Symantec	ML.Attribute.HighConfidence
Zoner	Probably Heur.ExeHeaderH
APEX	Malicious
Avast	Win32:AdwareX-gen [Adw]
Kaspersky	Trojan.Win32.Ekstak.akkel
BitDefender	Trojan.GenericKD.47321056
MicroWorld-eScan	Trojan.GenericKD.47321056
Ad-Aware	Trojan.GenericKD.47321056
Sophos	Troj/Agent-BHKP
TrendMicro	PAK_Xed-21
McAfee-GW-Edition	BehavesLike.Win32.Generic.rh
FireEye	Generic.mg.e028ce80f164eb8b
Emsisoft	Trojan.GenericKD.47321056 (B)
SentinelOne	Static AI – Malicious PE
Jiangmin	TrojanDownloader.Adload.ahep
Avira	TR/Ekstak.euxcn
Antiy-AVL	Trojan/Generic.ASMalwS.34C734B
Microsoft	Trojan:Script/Phonzy.A!ml
GData	Win32.Trojan.PSE.1H428Q1
AhnLab-V3	Trojan/Win.Generic.R448158
McAfee	GenericRXAA-AA!E028CE80F164
MAX	malware (ai score=80)
VBA32	TrojanDownloader.Adload
Malwarebytes	Adware.DownloadAssistant
Panda	Generic Suspicious
TrendMicro-HouseCall	PAK_Xed-21
MaxSecure	Trojan.Malware.121218.susgen
Fortinet	Riskware/Kryptik
AVG	Win32:AdwareX-gen [Adw]
Paloalto	generic.ml

How to remove Trojan.Win32.Ekstak.akkel?

Trojan.Win32.Ekstak.akkel removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X