Trojan

Trojan.Win32.Injuke.hlcs information

Malware Removal

The Trojan.Win32.Injuke.hlcs is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Win32.Injuke.hlcs virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Sample contains Overlay data
  • Presents an Authenticode digital signature
  • CAPE extracted potentially suspicious content
  • Authenticode signature is invalid
  • CAPE detected the RedLine malware family
  • Anomalous binary characteristics
  • Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine Trojan.Win32.Injuke.hlcs?



File Info:

name: 68FCE60081BBAC214810.mlw
path: /opt/CAPEv2/storage/binaries/3c150deb507f4038c73d5b32424f83591375a8fae03e8cbaf65322e843a8a098
crc32: 36E94407
md5: 68fce60081bbac2148109c394821705a
sha1: 59979f3ec9a58614fcfa323b963fdc0e88201fcc
sha256: 3c150deb507f4038c73d5b32424f83591375a8fae03e8cbaf65322e843a8a098
sha512: 7983aded0846829b07db7d02b91ec34271eae106f774d550e8dc783e11216905bec14c8c09e00a3dfbcd12cf03b0ff2d4d23c634aaefd8f0f0cd7363c09c2cc6
ssdeep: 6144:AoA5icKWzV6H+KHaDyXbbmIRf0VCvQdQp:akcKCV6H+0aWLhBgQQdQp
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T15B54073D3A234572D9EB54727CFBD9DD6BAF264168D213F3160830FE5EC3A8414AA189
sha3_384: 77cce783f2177694d1bb99e0c4338101661dbbee092ad4d3a83d2c49d6aff0b72faac08736666e1484fc4607f9634ca8
ep_bytes: e8173c0000e9a4feffff3b0d3c034400
timestamp: 1970-01-01 00:00:00


Version Info:

Comments: This is a legitimate application.
CompanyName: Georgian Bus Plant
FileDescription: Georgian Bus Plant Product
FileVersion: 367
InternalName: wZEJpJ6ueNIH
LegalCopyright: © Georgian Bus Plant All rights reserved.
LegalTrademarks: © Georgian Bus Plant Trademarks
OriginalFilename: Q2RedTgd.exe
ProductName: 13P4LuSrkb
ProductVersion: 367
Translation: 0x0407 0x04b0

Trojan.Win32.Injuke.hlcs also known as:

BkavW32.Common.EB3299CC
LionicTrojan.Win32.Injuke.16!c
AVGWin32:PWSX-gen [Trj]
Elasticmalicious (high confidence)
DrWebTrojan.PWS.RedLineNET.7
MicroWorld-eScanTrojan.GenericKD.67914367
FireEyeGeneric.mg.68fce60081bbac21
CAT-QuickHealTrojan.GenericPMF.S30390596
ALYacTrojan.GenericKD.67914367
Cylanceunsafe
VIPRETrojan.GenericKD.67914367
SangforTrojan.Win32.Save.a
CrowdStrikewin/malicious_confidence_100% (W)
AlibabaTrojan:Win32/Kryptik.1506e4a4
K7GWTrojan ( 005a75b91 )
K7AntiVirusTrojan ( 005a75b91 )
BitDefenderThetaGen:NN.ZexaF.36348.rq2@aOb7y9ii
VirITTrojan.Win32.GenusT.DNUP
CyrenW32/Kryptik.KCN.gen!Eldorado
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/Kryptik.HTYZ
CynetMalicious (score: 100)
APEXMalicious
ClamAVWin.Malware.Pwsx-10005471-0
KasperskyTrojan.Win32.Injuke.hlcs
BitDefenderTrojan.GenericKD.67914367
NANO-AntivirusTrojan.Win32.Injuke.jxdhgp
AvastWin32:PWSX-gen [Trj]
TencentMalware.Win32.Gencirc.10bf02da
EmsisoftTrojan.GenericKD.67914367 (B)
F-SecureTrojan.TR/AD.RedLineSteal.qqxvu
ZillyaTrojan.Injuke.Win32.32875
TrendMicroTrojanSpy.Win32.REDLINE.YXDGBZ
McAfee-GW-EditionBehavesLike.Win32.Generic.dh
Trapminemalicious.high.ml.score
SophosTroj/Krypt-AAD
SentinelOneStatic AI – Malicious PE
GDataWin32.Trojan.PSE.5ETMBA
AviraTR/AD.RedLineSteal.qqxvu
MAXmalware (ai score=83)
Antiy-AVLTrojan/Win32.Kryptik
XcitiumMalware@#12p0ndtn7lufp
ArcabitTrojan.Generic.D40C4A7F
ZoneAlarmTrojan.Win32.Injuke.hlcs
MicrosoftTrojan:Win32/Leonem
GoogleDetected
AhnLab-V3Trojan/Win.PWSX-gen.R589339
McAfeeRedline-FDQW!68FCE60081BB
VBA32TrojanPSW.RedLine
MalwarebytesTrojan.Crypt
PandaTrj/Genetic.gen
TrendMicro-HouseCallTrojanSpy.Win32.REDLINE.YXDGBZ
RisingTrojan.Kryptik!1.E841 (CLASSIC)
IkarusTrojan.Win32.Crypt
MaxSecureTrojan.W32.Injurer.gen
FortinetW32/Kryptik.HTVT!tr
DeepInstinctMALICIOUS

How to remove Trojan.Win32.Injuke.hlcs?

Trojan.Win32.Injuke.hlcs removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment