Trojan

Trojan.Win32.Khalesi.xz removal guide

Malware Removal

The Trojan.Win32.Khalesi.xz is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Win32.Khalesi.xz virus can do?

  • Presents an Authenticode digital signature
  • A process attempted to delay the analysis task.
  • Unconventionial language used in binary resources: Korean
  • The binary likely contains encrypted or compressed data.
  • Uses Windows utilities for basic functionality
  • Attempts to modify browser security settings
  • Uses suspicious command line tools or Windows utilities

How to determine Trojan.Win32.Khalesi.xz?



File Info:

crc32: 71C94A64
md5: 16ec88a8d0ed1a1a6a3dbc2938b67c2a
name: 16EC88A8D0ED1A1A6A3DBC2938B67C2A.mlw
sha1: 3a7b0eb6b0b0607e188f3e40eb7f650fe87b6db6
sha256: 64be80d2ac2efdb5903b35a41f8c0ffdf10302c8a72f211ca356ef0aaa26d518
sha512: 76a3ce2b9e3961fd0dde54b50296224e95243cbee355b81b9db81f81867ed799adb3f362da95a1ac4348297430a668004a609f73baa932c99b55da5cd9ce3343
ssdeep: 24576:Fz8VrPBMk42ZEn2DOToLjfsbGSwd6qTEpA4xq/P8cNawfayYbHD7IyX:N++kLWdoAGVYXxi7N3+jlX
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright: Copyright (C) 2016
InternalName: 1.exe
FileVersion: 1.0.0.1
CompanyName: -
ProductName: -
ProductVersion: 1.0.0.1
FileDescription: -
OriginalFilename: 1.exe
Translation: 0x0412 0x04b0

Trojan.Win32.Khalesi.xz also known as:

K7AntiVirusTrojan ( 00517c541 )
CrowdStrikewin/malicious_confidence_100% (D)
K7GWTrojan ( 00517c541 )
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/LockScreen.BQP
APEXMalicious
KasperskyTrojan.Win32.Khalesi.xz
NANO-AntivirusTrojan.Win32.Khalesi.evrpik
TencentWin32.Trojan.Khalesi.Eaoa
McAfee-GW-EditionGenericRXJJ-BS!16EC88A8D0ED
FireEyeGeneric.mg.16ec88a8d0ed1a1a
EmsisoftTrojan.LockScreen (A)
SentinelOneStatic AI – Malicious PE
MicrosoftRansom:Win32/LockScreen.LK!MTB
McAfeeGenericRXJJ-BS!16EC88A8D0ED
VBA32BScope.Trojan.Khalesi
RisingTrojan.LockScreen!1.B39F (CLASSIC)
YandexTrojan.GenAsa!6u1aK2hN5Zw
IkarusTrojan.RansomKD
FortinetW32/LockScreen.BPL!tr

How to remove Trojan.Win32.Khalesi.xz?

Trojan.Win32.Khalesi.xz removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment