Trojan.Win32.Vebzenpak.aave removal tips

The Trojan.Win32.Vebzenpak.aave is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Trojan.Win32.Vebzenpak.aave virus can do?

Executable code extraction
Creates RWX memory
Network activity detected but not expressed in API logs
Anomalous binary characteristics

How to determine Trojan.Win32.Vebzenpak.aave?


File Info:
crc32: C8AE7DA3
md5: 70ebb599e79b4444e80c32c506d06d74
name: upload_file
sha1: 21dd1b841d21a106707ac5e9d8b39cf2fff07330
sha256: e7024ae37c42b1eedcf90ca1a3505c69a72b2e8ab7d64f560e02ae35c8018a3f
sha512: 4b427b0f591202c8917e94fc530185af280276ded445b67606aa6fe52f97c0691787c4e8dfd324ffa0219db3a468f5dba2e55fd93c4ed9c995907ed386d5ee9d
ssdeep: 768:L24l/ot5sGr78t/pRuNvwfkuzyB5PuaG:ot5nr78zYwMu6e
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:
Translation: 0x0409 0x04b0
InternalName: NECTARS
FileVersion: 1.00
CompanyName: AOL
ProductName: PLANIMETRY
ProductVersion: 1.00
OriginalFilename: NECTARS.exe

Trojan.Win32.Vebzenpak.aave also known as:

Bkav	W32.AIDetectVM.malware2
MicroWorld-eScan	Trojan.GenericKD.43991316
CAT-QuickHeal	Trojan.Multi
Malwarebytes	Trojan.VBCrypt
K7AntiVirus	Trojan ( 005705441 )
K7GW	Trojan ( 005705441 )
TrendMicro	TROJ_GEN.R02CC0DJ820
Cyren	W32/Trojan.LUYJ-6125
APEX	Malicious
Paloalto	generic.ml
Kaspersky	Trojan.Win32.Vebzenpak.aave
Microsoft	Trojan:Win32/Ymacco.AAE7
NANO-Antivirus	Trojan.Win32.Vebzenpak.hyudgo
Tencent	Win32.Trojan-downloader.Agent.Ahyp
F-Secure	Trojan.TR/AD.VBCryptor.ndyut
DrWeb	Trojan.Inject4.2312
VIPRE	Trojan.Win32.Generic!BT
Invincea	Mal/Generic-S
Sophos	Mal/Generic-S
SentinelOne	DFI – Malicious PE
Jiangmin	Trojan.Vebzenpak.hsu
Avira	TR/AD.VBCryptor.ndyut
MAX	malware (ai score=87)
Arcabit	Trojan.Generic.D29F4114
ZoneAlarm	Trojan.Win32.Vebzenpak.aave
GData	Trojan.GenericKD.43991316
Cynet	Malicious (score: 85)
AhnLab-V3	Trojan/Win32.Injector.R352832
VBA32	TScope.Trojan.VB
Cylance	Unsafe
Panda	Trj/GdSda.A
ESET-NOD32	Win32/TrojanDownloader.Agent.FCS
Rising	Trojan.Injector!8.C4 (TFE:5:Lt2GaF1ASTD)
Yandex	Trojan.Igent.bUzFtv.10
Ikarus	Trojan.VB.Crypt
Fortinet	W32/ENNP!tr
AVG	Win32:InjectorX-gen [Trj]
Avast	Win32:InjectorX-gen [Trj]
CrowdStrike	win/malicious_confidence_90% (W)
MaxSecure	Trojan.Malware.74794310.susgen

How to remove Trojan.Win32.Vebzenpak.aave?

Trojan.Win32.Vebzenpak.aave removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X