Trojan

Trojan.Win32.VBKrypt.iacg information

Malware Removal

The Trojan.Win32.VBKrypt.iacg is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Win32.VBKrypt.iacg virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • Creates RWX memory
  • Dynamic (imported) function loading detected
  • CAPE extracted potentially suspicious content
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • Anomalous binary characteristics

How to determine Trojan.Win32.VBKrypt.iacg?



File Info:

name: A76CBE00DD45A8C17DE3.mlw
path: /opt/CAPEv2/storage/binaries/86bb4d8fce324fbe028b62a73a798aa2bd4dac6675a3fdf6d7e55f41cb3024da
crc32: B76D0D79
md5: a76cbe00dd45a8c17de38f328c1da331
sha1: 4611d23c6c26b2a8b7ea04cf96460f262149ea7f
sha256: 86bb4d8fce324fbe028b62a73a798aa2bd4dac6675a3fdf6d7e55f41cb3024da
sha512: cadafc3fae02cbf346a5657284580dea20e7a5682444c35fe3ea81d0a738df9927d79b2d14718a8d239f8b952c677a1ead47c2909781847570c7f584f99afc2d
ssdeep: 768:isAKbeA/xKJrYP5mGuVLjeNg8GyGam6LGDFscfM9S6a3tp+:dL9/QpwOjeK8oam6LG7x6a3+
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T11513E1D0F7B47908D0A3DA390D3386B09877BD920D98D79779A43B9E7DF16185E28842
sha3_384: abcb3edf00321ab88257c95820ae30c6787d00f4dff8b961a1457d2be7c23a1455eb3427e6465235a935d367e81fa99c
ep_bytes: b83ca742005064ff3500000000648925
timestamp: 2011-12-01 01:47:07


Version Info:

Comments: 
CompanyName: Auto Debug System
FileDescription: Kill Process Module
FileVersion: 1, 1, 1, 10
InternalName: KillProcess
LegalCopyright: Copyright 2003-2007 Auto Debug System
LegalTrademarks: 
OriginalFilename: KillProcess.exe
PrivateBuild: 
ProductName: KillProcess Module
ProductVersion: 1, 1, 1, 10
SpecialBuild: 
Translation: 0x0409 0x04b0

Trojan.Win32.VBKrypt.iacg also known as:

BkavW32.AIDetect.malware2
LionicTrojan.Win32.VBKrypt.4!c
Elasticmalicious (high confidence)
DrWebTrojan.MulDrop3.19176
MicroWorld-eScanTrojan.GenericKDZ.83026
FireEyeGeneric.mg.a76cbe00dd45a8c1
McAfeeGenericRXHQ-FQ!A76CBE00DD45
CylanceUnsafe
ZillyaTrojan.Injector.Win32.681353
SangforPUP.Win32.Ulise.96526
K7AntiVirusRiskware ( 0040eff71 )
AlibabaTrojan:Win32/VBKrypt.16e34b4a
K7GWRiskware ( 0040eff71 )
Cybereasonmalicious.0dd45a
BitDefenderThetaGen:NN.ZexaF.34182.ci0aamH22Sdi
VirITTrojan.Win32.Generic.LPG
CyrenW32/A-76660f26!Eldorado
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/Injector.APG
APEXMalicious
Paloaltogeneric.ml
ClamAVWin.Packed.Ulise-9760980-0
KasperskyTrojan.Win32.VBKrypt.iacg
BitDefenderTrojan.GenericKDZ.83026
NANO-AntivirusTrojan.Win32.VBKrypt.gyyha
AvastWin32:Trojan-gen
TencentMalware.Win32.Gencirc.114db865
Ad-AwareTrojan.GenericKDZ.83026
SophosMal/Generic-S
ComodoMalware@#2oitoehekv7bq
VIPRETrojan.Win32.Generic!BT
TrendMicroTROJ_AGENT_005633.TOMB
McAfee-GW-EditionBehavesLike.Win32.VirRansom.pc
EmsisoftTrojan.GenericKDZ.83026 (B)
IkarusTrojan.Win32.VBKrypt
GDataTrojan.GenericKDZ.83026
JiangminTrojan/VBKrypt.efaq
AviraTR/Crypt.PEPM.Gen
ViRobotTrojan.Win32.Z.Vbkrypt.42496.X
MicrosoftTrojan:Win32/Wacatac.B!ml
TACHYONTrojan/W32.Small.42496.JH
AhnLab-V3Trojan/Win32.VBKrypt.R16793
Acronissuspicious
VBA32Trojan.VBKrypt
ALYacTrojan.GenericKDZ.83026
MAXmalware (ai score=99)
MalwarebytesMalware.AI.3786025197
TrendMicro-HouseCallTROJ_AGENT_005633.TOMB
RisingTrojan.Win32.VBCode.fqy (CLOUD)
YandexTrojan.VBKrypt!t3dJQxKPRJ4
SentinelOneStatic AI – Malicious PE
eGambitUnsafe.AI_Score_65%
FortinetW32/Magania.IDPJ!tr
AVGWin32:Trojan-gen
PandaTrj/Genetic.gen
CrowdStrikewin/malicious_confidence_70% (W)
MaxSecureTrojan.Malware.2588.susgen

How to remove Trojan.Win32.VBKrypt.iacg?

Trojan.Win32.VBKrypt.iacg removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment