Trojan.Win32.Siscos.abxw removal instruction

The Trojan.Win32.Siscos.abxw is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Trojan.Win32.Siscos.abxw virus can do?

The binary contains an unknown PE section name indicative of packing
The binary likely contains encrypted or compressed data.
Authenticode signature is invalid

How to determine Trojan.Win32.Siscos.abxw?


File Info:
name: C0BB5CEAB12F7EED6322.mlw
path: /opt/CAPEv2/storage/binaries/e40ec497c013905bbad248026a3db7a125af9c851fee65eb41faab7680d2223c
crc32: C99E4872
md5: c0bb5ceab12f7eed6322db93b90e7eb5
sha1: 2002a824bebb1919aa72ce3ee62113a9d2edc84f
sha256: e40ec497c013905bbad248026a3db7a125af9c851fee65eb41faab7680d2223c
sha512: 70f114c95a7f34ef786ac5b7fd66457e995fda0a57a35aa9a42d4701fe51ee67f34c79bd100148b400d453c8239356115c7788e979fb966c21709fdda149b4a0
ssdeep: 768:wNWsyqAggKmldUywKU1hrCX6xCLUHCmbFC8R+mWQFnRjpAU6:5syqFgKqU9K2rYqCLUms+m1nRjpAU6
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1D003D042D7D26409DC57033006972F118A24BAB821ED9FCB066AAC9E9F77B277F95072
sha3_384: 6e577e0821ce07532e5e7ee96d84f3cd2973728e08e79b481ad1a91a1aadbbcbe9e5a4fa88dcc64823723ee1b7314556
ep_bytes: b8005041006a00686c05410064ff3500
timestamp: 2020-03-20 15:02:12

Version Info:
CompanyName: 
FileDescription: GRAPH MFC Application
FileVersion: 1, 0, 0, 1
InternalName: GRAPH
LegalCopyright: Copyright © 1996
LegalTrademarks: 
OriginalFilename: GRAPH.EXE
ProductName: GRAPH Application
ProductVersion: 1, 0, 0, 1
Translation: 0x0409 0x04b0

Trojan.Win32.Siscos.abxw also known as:

Bkav	W32.AIDetect.malware2
Elastic	malicious (high confidence)
DrWeb	Trojan.DownLoader33.21797
McAfee	Artemis!C0BB5CEAB12F
Cylance	Unsafe
Cybereason	malicious.4bebb1
Cyren	W32/Zegost.DM.gen!Eldorado
ESET-NOD32	a variant of Win32/Kryptik.FHSE
Zoner	Probably Heur.ExeHeaderP
TrendMicro-HouseCall	BKDR_ZEGOST.SM34
Kaspersky	Trojan.Win32.Siscos.abxw
NANO-Antivirus	Trojan.Win32.Lotok.hhgdis
Rising	Trojan.Kryptik!1.AAD1 (CLASSIC)
Sophos	Mal/Generic-S
Comodo	TrojWare.Win32.Banbra.~dy002@1xe0yd
TrendMicro	BKDR_ZEGOST.SM34
McAfee-GW-Edition	BehavesLike.Win32.Generic.nc
SentinelOne	Static AI – Malicious PE
Trapmine	suspicious.low.ml.score
Jiangmin	Backdoor.Lotok.fs
Avira	TR/AD.Farfli.uznbm
Kingsoft	Win32.Troj.Siscos.ab.(kcloud)
Microsoft	Trojan:Win32/Wacatac.B!ml
Cynet	Malicious (score: 99)
Malwarebytes	Malware.Heuristic.1003
APEX	Malicious
Tencent	Win32.Trojan.Siscos.Sxod
Fortinet	W32/PossibleThreat
AVG	Win32:TrojanX-gen [Trj]
Avast	Win32:TrojanX-gen [Trj]
CrowdStrike	win/malicious_confidence_60% (W)

How to remove Trojan.Win32.Siscos.abxw?

Trojan.Win32.Siscos.abxw removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X