Trojan

How to remove “Trojan.Win32.Snojan.camy”?

Malware Removal

The Trojan.Win32.Snojan.camy is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Win32.Snojan.camy virus can do?

  • Executable code extraction
  • Attempts to connect to a dead IP:Port (1 unique times)
  • Creates RWX memory
  • Reads data out of its own binary image
  • Writes a potential ransom message to disk
  • Anomalous binary characteristics

Related domains:

spdevb0t.dynu.com

How to determine Trojan.Win32.Snojan.camy?



File Info:

crc32: 968061FA
md5: f80d3987ed9cd9f226d8646e56bbe611
name: F80D3987ED9CD9F226D8646E56BBE611.mlw
sha1: 14fe528daf00801e940f4951f6de21d7250f8ec5
sha256: 4ea43c27819b1390ebeb4190e619fe1757d96ecc92bfac1bfaff313fa16b53f1
sha512: 795a62ed54a2fd9746af98e8e143772ed7e1b27cfda1fe65b324af263ac63a4631db999f9d9d536b4acebd623a8f2c60f84e37689ee52803e9a45138e52c2ac5
ssdeep: 196608:xlX+aFFAZo7DFPRYNkmd4qtqBMhsDOVpN1G:xlrFFAS7vYqlqtqQsDup
type: PE32 executable (GUI) Intel 80386 (stripped to external PDB), for MS Windows


Version Info:

LegalCopyright: xa9 Microsoft Corporation. All rights reserved.
InternalName: DevicePairing
FileVersion: 10.0.14393.0 (rs1_release.160715-1616)
CompanyName: Microsoft Corporation
ProductName: Microsoftxae Windowsxae Operating System
ProductVersion: 10.0.14393.0
FileDescription: Device Pairing Application
OriginalFilename: DevicePairing.exe
Translation: 0x0409 0x04b0

Trojan.Win32.Snojan.camy also known as:

K7AntiVirusRiskware ( 0040eff71 )
LionicTrojan.Win32.Snojan.4!c
ALYacTrojan.GenericKD.32595033
CylanceUnsafe
SangforTrojan.Win32.Snojan.camy
CrowdStrikewin/malicious_confidence_100% (W)
AlibabaTrojan:Win32/Snojan.bd8a2965
K7GWRiskware ( 0040eff71 )
Cybereasonmalicious.7ed9cd
SymantecML.Attribute.HighConfidence
ESET-NOD32Python/IRCBot.M
APEXMalicious
AvastFileRepMalware
KasperskyTrojan.Win32.Snojan.camy
BitDefenderTrojan.GenericKD.32595033
NANO-AntivirusTrojan.Win32.Snojan.evwbjj
MicroWorld-eScanTrojan.GenericKD.32595033
TencentWin32.Trojan.Snojan.Ebgn
Ad-AwareTrojan.GenericKD.32595033
SophosMal/Generic-S
ComodoMalware@#35259u55aac4k
VIPRETrojan.Win32.Generic!BT
TrendMicroTROJ_GEN.R002C0PGB21
McAfee-GW-EditionBehavesLike.Win32.Virut.vc
FireEyeTrojan.GenericKD.32595033
EmsisoftTrojan.GenericKD.32595033 (B)
SentinelOneStatic AI – Suspicious PE
WebrootW32.Trojan.Gen
AviraTR/Snojan.pubrg
eGambitGeneric.Trojan
KingsoftWin32.Troj.Undef.(kcloud)
MicrosoftTrojan:Win32/Occamy.C4E
GDataTrojan.GenericKD.32595033
TACHYONTrojan/W32.Snojan.6765845
McAfeeGenericR-LKN!F80D3987ED9C
MAXmalware (ai score=100)
VBA32Trojan.Snojan
PandaTrj/CI.A
TrendMicro-HouseCallTROJ_GEN.R002C0PGB21
YandexTrojan.Snojan!vX+UAa3fxBY
IkarusTrojan.Win32.Snojan
FortinetW32/Snojan.CAMY!tr
AVGFileRepMalware
Paloaltogeneric.ml

How to remove Trojan.Win32.Snojan.camy?

Trojan.Win32.Snojan.camy removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment