Trojan

Trojan.Win32.Ekstak.aloxt removal

Malware Removal

The Trojan.Win32.Ekstak.aloxt is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Win32.Ekstak.aloxt virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Creates RWX memory
  • Dynamic (imported) function loading detected
  • Reads data out of its own binary image
  • CAPE extracted potentially suspicious content
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid
  • Likely virus infection of existing system binary

How to determine Trojan.Win32.Ekstak.aloxt?



File Info:

name: D66402D424DAA9DA652E.mlw
path: /opt/CAPEv2/storage/binaries/bd9e27cce996f7e979d6b8555aa11994215e2d5202b8e3059b38cd88688a6a59
crc32: 5C3C1FEB
md5: d66402d424daa9da652eecb8ceadb64e
sha1: d73c55bd257ac4eb1533c2ac33e5cd75c3b1c3b4
sha256: bd9e27cce996f7e979d6b8555aa11994215e2d5202b8e3059b38cd88688a6a59
sha512: 4004d01e31b085922cfcdcd4173ae595f1c9592cc368306ccc207c53f92aef3d9b34dad3b657a8c2c20499b9685889abb3e192adc7fd3e786f768f3a0b58356d
ssdeep: 196608:rYk8HyoIiARToqJWf4cYumzYKvKEQ+2GmhIFY3iyMaKj/230zlL:IyDRscWwdumzYpEQ+2GuDMrje30RL
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T181963317F3B8ABF6D21BE4350A55DBA017BD7638AC3640596B4E053E1FAF29D80C9B04
sha3_384: d15c2b3881949784cfe3bf5ea6ad58929c3d8cc15af72eb0aacbc55d31e17f532ee3c7c4a9733517181ab0bf0428f952
ep_bytes: 558bec83c4cc53565733c08945f08945
timestamp: 1992-06-19 22:22:17


Version Info:

Comments: This installation was built with Inno Setup.
CompanyName: Company TKF                                                 
FileDescription: Smart File Delete Setup                                     
FileVersion:                     
LegalCopyright:                                                                                                     
Translation: 0x0409 0x04e4

Trojan.Win32.Ekstak.aloxt also known as:

LionicTrojan.Win32.Ekstak.4!c
MicroWorld-eScanGen:Variant.Cerbu.129903
FireEyeGen:Variant.Cerbu.129903
MalwarebytesAdware.DownloadAssistant
K7AntiVirusTrojan ( 005722f11 )
K7GWTrojan ( 005722f11 )
SymantecTrojan.Gen.2
ESET-NOD32a variant of Win32/TrojanDropper.Agent.SLC
Paloaltogeneric.ml
KasperskyTrojan.Win32.Ekstak.aloxt
BitDefenderGen:Variant.Cerbu.129903
TencentWin32.Trojan.Ekstak.Wqwi
Ad-AwareGen:Variant.Cerbu.129903
McAfee-GW-EditionBehavesLike.Win32.Dropper.rc
SophosMal/Generic-S
AviraHEUR/AGEN.1219006
MAXmalware (ai score=82)
MicrosoftTrojan:Win32/Sabsik.FL.B!ml
ZoneAlarmTrojan.Win32.Ekstak.aloxt
GDataWin32.Backdoor.Bodelph.H46SOQ
CynetMalicious (score: 100)
AhnLab-V3Adware/Win.Adware-gen.R471264
McAfeeArtemis!D66402D424DA
IkarusTrojan-Dropper.Win32.Agent
FortinetRiskware/Agent

How to remove Trojan.Win32.Ekstak.aloxt?

Trojan.Win32.Ekstak.aloxt removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment