Trojan

Trojan.Win32.Fsysna.evah (file analysis)

Malware Removal

The Trojan.Win32.Fsysna.evah is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Win32.Fsysna.evah virus can do?

  • The binary likely contains encrypted or compressed data.
  • Network activity detected but not expressed in API logs

How to determine Trojan.Win32.Fsysna.evah?



File Info:

crc32: 97C62BFE
md5: c1289a2c2f26c614b1875fc1b074186e
name: C1289A2C2F26C614B1875FC1B074186E.mlw
sha1: d8e7fb6402206709bfdd19cdd844459a832c2868
sha256: 85af6d96c7895c186ff06bb3e895294667b5cfab4907fdccb9238f43d75656e4
sha512: dcd8713968d041df1a805e3eef4dfd9f763343fd04f72c22689d2aa8fcec729b2285b90bd02bf82df1181787d17bfee02add57b44c7bd7b756561d7d4fec9e1e
ssdeep: 49152:bGLl0LecwEsIbay+yX5AbDgOViKpZOgZ:b+lDjEKkaDgOURg
type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows


Version Info:

Translation: 0x0000 0x04b0
LegalCopyright: Copyright 2013 - 2018 Satoshi Box Downloaders . All rights reserved.
Assembly Version: 6.2.0.0
InternalName: SatoshiBox.exe
FileVersion: 6.2.0.0
CompanyName: 
LegalTrademarks: 
Comments: 
ProductName: Satoshi Box Downloaders
ProductVersion: 6.2.0.0
FileDescription: 
OriginalFilename: SatoshiBox.exe

Trojan.Win32.Fsysna.evah also known as:

K7AntiVirusTrojan ( 700000121 )
LionicTrojan.Multi.Generic.4!c
DrWebTrojan.ClipBankerNET.19
CynetMalicious (score: 99)
ALYacTrojan.GenericKD.30728726
CylanceUnsafe
CrowdStrikewin/malicious_confidence_70% (W)
K7GWTrojan ( 700000121 )
Cybereasonmalicious.c2f26c
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of MSIL/ClipBanker.FL
APEXMalicious
AvastWin32:Malware-gen
KasperskyTrojan.Win32.Fsysna.evah
BitDefenderTrojan.GenericKD.30728726
NANO-AntivirusTrojan.Win32.Fsysna.fbheji
MicroWorld-eScanTrojan.GenericKD.30728726
TencentWin32.Trojan.Fsysna.Sung
Ad-AwareTrojan.GenericKD.30728726
SophosMal/Generic-S
ComodoMalware@#1ue7bcn8dfrbo
BitDefenderThetaGen:NN.ZemsilF.34170.Un0@aKARXvn
VIPRETrojan.Win32.Generic!BT
McAfee-GW-EditionGenericRXFJ-JX!C1289A2C2F26
FireEyeGeneric.mg.c1289a2c2f26c614
EmsisoftTrojan.GenericKD.30728726 (B)
SentinelOneStatic AI – Malicious PE
AviraHEUR/AGEN.1132047
MicrosoftTrojan:Win32/Wacatac.B!ml
GDataMSIL.Trojan.ClipBanker.C
McAfeeGenericRXFJ-JX!C1289A2C2F26
MAXmalware (ai score=98)
MalwarebytesMalware.AI.2331706192
PandaTrj/GdSda.A
IkarusTrojan.MSIL.ClipBanker
AVGWin32:Malware-gen
Paloaltogeneric.ml

How to remove Trojan.Win32.Fsysna.evah?

Trojan.Win32.Fsysna.evah removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment