Trojan

How to remove “Trojan.Win32.Ekstak.anwfj”?

Malware Removal

The Trojan.Win32.Ekstak.anwfj is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Win32.Ekstak.anwfj virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Sample contains Overlay data
  • Reads data out of its own binary image
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid
  • Deletes executed files from disk

How to determine Trojan.Win32.Ekstak.anwfj?



File Info:

name: 68F46A8333D7BB3F24DF.mlw
path: /opt/CAPEv2/storage/binaries/66b728a199e6cb8758fe31e1f9b738b7fe2960c6d7e3a81c390f93fe36ec1b8f
crc32: 63E11263
md5: 68f46a8333d7bb3f24dfc057102c875c
sha1: 6acc7b08bb0a8f720d22758be0a76dbf591030cf
sha256: 66b728a199e6cb8758fe31e1f9b738b7fe2960c6d7e3a81c390f93fe36ec1b8f
sha512: eb2f51122ab4242137ffef67d2b177528a15f693f9883736b019706aad444860b648ab42b4320c817fcd759b703e63f5b2b3aad18591ca25cf111e25ad114bf4
ssdeep: 98304:JavCFusMSKQjji0KjvAulH8S11o8mforCJBXfmifmrMeN8ko0cW:SUOSDXhzulHf1xqorCwAVkN
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1B536334FC3EC66B2C6F197333F386612561A380D6A718FBD3B95E6458F25E2D0428267
sha3_384: 57486f5ca7740e19edc28592c540b45fb9c351bf162b23c3e190d41647947fd954daf34c80c4e483aacb3d23999dc865
ep_bytes: 558bec83c4cc53565733c08945f08945
timestamp: 1992-06-19 22:22:17


Version Info:

Comments: This installation was built with Inno Setup: http://www.innosetup.com
CompanyName: Skz studio                                                  
FileDescription: Skz Version Safe Setup                                      
FileVersion:                     
LegalCopyright:                                                                                                     
Translation: 0x0409 0x04e4

Trojan.Win32.Ekstak.anwfj also known as:

Cylanceunsafe
AlibabaTrojanDropper:Win32/Ekstak.98fc6b34
K7GWTrojan ( 005722f11 )
K7AntiVirusTrojan ( 005722f11 )
ESET-NOD32a variant of Win32/TrojanDropper.Agent.SLC
KasperskyTrojan.Win32.Ekstak.anwfj
AvastWin32:Trojan-gen
TencentWin32.Trojan.Ekstak.Sgil
McAfee-GW-EditionArtemis!Trojan
WebrootW32.Adware.Gen
ZoneAlarmTrojan.Win32.Ekstak.anwfj
MicrosoftTrojan:Win32/Wacatac.B!ml
AhnLab-V3Trojan/Win.Trojan-gen.C5440278
McAfeeArtemis!68F46A8333D7
MalwarebytesAdware.DownloadAssistant
TrendMicro-HouseCallTROJ_GEN.R002H0DFA23
FortinetW32/Agent.SLC!tr
AVGWin32:Trojan-gen
DeepInstinctMALICIOUS

How to remove Trojan.Win32.Ekstak.anwfj?

Trojan.Win32.Ekstak.anwfj removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment