Trojan

Trojan.Win32.Ekstak.alnkp information

Malware Removal

The Trojan.Win32.Ekstak.alnkp is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Win32.Ekstak.alnkp virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Creates RWX memory
  • Dynamic (imported) function loading detected
  • Reads data out of its own binary image
  • CAPE extracted potentially suspicious content
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid
  • Likely virus infection of existing system binary

How to determine Trojan.Win32.Ekstak.alnkp?



File Info:

name: F3708E954750810DCFEE.mlw
path: /opt/CAPEv2/storage/binaries/d3e32e0529a4905a2b761231ceb0652e9da72e2444c9d99bd07d10f282af69d2
crc32: 730E044E
md5: f3708e954750810dcfee9d5d0ef89738
sha1: 8785f1e58c3bd41c4f9a5d7da538a990a02f15a0
sha256: d3e32e0529a4905a2b761231ceb0652e9da72e2444c9d99bd07d10f282af69d2
sha512: c546762031a2b3b04a42b07e5f5282a4ded40e2905237c36fddb83c0375ebcfe52667ff1f3cc219d7ec81f3a2bf8c92193006140e3c8fd5f343ab804ba80b2e5
ssdeep: 196608:EBEN48+/OwjdFjiSt18orD4/eY31lNXx9Yl2X56joIhO1fyYD:9N4dxFjiStL4/eY317YeI0jD
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1C086236B7F8182EED5961C7AEA6044F82CF66237483910CC1B7A9BF60E352E1CB571D1
sha3_384: 4b823979f4e6d782fcd76d04b3a01da212c796a7732307b64130282585c2767c992adf285e43c7cd60fe7914623f3e0d
ep_bytes: 558bec83c4cc53565733c08945f08945
timestamp: 1992-06-19 22:22:17


Version Info:

Comments: This installation was built with Inno Setup.
CompanyName: VerB Keys                                                   
FileDescription: VerB Keys Setup                                             
FileVersion:                     
LegalCopyright:                                                                                                     
Translation: 0x0409 0x04e4

Trojan.Win32.Ekstak.alnkp also known as:

LionicTrojan.Multi.Generic.4!c
McAfeeArtemis!F3708E954750
CylanceUnsafe
SangforRiskware.Win32.Agent.ky
K7AntiVirusTrojan ( 005722f11 )
K7GWTrojan ( 005722f11 )
CyrenW32/Ekstak.BQ.gen!Eldorado
SymantecTrojan.Gen.2
ESET-NOD32a variant of Win32/TrojanDropper.Agent.SLC
TrendMicro-HouseCallTROJ_GEN.R002H0DAS22
KasperskyTrojan.Win32.Ekstak.alnkp
AvastWin32:Trojan-gen
TencentWin32.Trojan.Ekstak.Ebzs
IkarusTrojan-Dropper.Win32.Agent
GDataWin32.Backdoor.Bodelph.QBWOID
AviraHEUR/AGEN.1219006
MicrosoftTrojan:Win32/Sabsik.FL.B!ml
CynetMalicious (score: 100)
AhnLab-V3Adware/Win.Adware-gen.R469588
VBA32Trojan.Sabsik.FL
MalwarebytesAdware.DownloadAssistant
FortinetW32/Agent.SLC!tr
AVGWin32:Trojan-gen

How to remove Trojan.Win32.Ekstak.alnkp?

Trojan.Win32.Ekstak.alnkp removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment