Trojan

Trojan.Win32.Vebzenpak.gzg removal instruction

Malware Removal

The Trojan.Win32.Vebzenpak.gzg is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Win32.Vebzenpak.gzg virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • CAPE extracted potentially suspicious content
  • Authenticode signature is invalid
  • Behavioural detection: Injection (Process Hollowing)
  • Behavioural detection: Injection (inter-process)
  • Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine Trojan.Win32.Vebzenpak.gzg?



File Info:

name: 0B8904C76CB6FF7BB245.mlw
path: /opt/CAPEv2/storage/binaries/aee59b1719c90a00cfa73557a0614ab66caf24bcd423941984640986bec305e5
crc32: 5F4D7915
md5: 0b8904c76cb6ff7bb24570e0a00d47d2
sha1: 5b48ec2b96b2adfca32e4025e8e5ae69c707c190
sha256: aee59b1719c90a00cfa73557a0614ab66caf24bcd423941984640986bec305e5
sha512: 762a581567785fb5970e3b1bdc03a722c733e857e4c4dcf03c70ad1935261a55f2b38ca7aea11a0c7fbd72e9ae462b6b82aa2658d97f67dd58366646ecb2bcf7
ssdeep: 384:W/ZkxButakeRD8ufPTwLy4ZWAPeuw2A8Gs0TarFzTGBbqg0L9pjh3n:yZHH3LydOhAWLtTeH093
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T13F333A13F2E1D561F8B24E315CA38A9188B3FD294F61DF3B61903B5E3DB16088D56366
sha3_384: 8135ca778a0fd4b4e4b11bd00c2957b6748c06f118db1ec562d2b9f3dc751294ab77ca732b374f55db232b9bfa244a9f
ep_bytes: 6850134000e8f0ffffff000000000000
timestamp: 2011-06-30 23:02:07


Version Info:

Translation: 0x0409 0x04b0
Comments: Mozilla Thunderbird Mail and News Client
CompanyName: Mozilla Corporation
FileDescription: Thunderbird
LegalCopyright: ©Thunderbird and Mozilla Developers, according to the MPL 1.1/GPL 2.0/LGPL 2.1 licenses, as applicable.
LegalTrademarks: Thunderbird is a Trademark of The Mozilla Foundation.
ProductName: Thunderbird
FileVersion: 68.05
ProductVersion: 68.05
InternalName: thunderbird
OriginalFilename: thunderbird.exe

Trojan.Win32.Vebzenpak.gzg also known as:

BkavW32.AIDetectMalware
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Heur.VB.Krypt.11
ClamAVWin.Dropper.Ponystealer-7615706-0
FireEyeGeneric.mg.0b8904c76cb6ff7b
CAT-QuickHealTrojan.VebzenpakMF.S12535874
McAfeeFareit-FRP!0B8904C76CB6
VIPREGen:Heur.VB.Krypt.11
SangforTrojan.Win32.Agent.gen
K7AntiVirusRiskware ( 0040eff71 )
AlibabaTrojan:Win32/Vebzenpak.ec42f7a5
K7GWRiskware ( 0040eff71 )
Cybereasonmalicious.76cb6f
ArcabitTrojan.VB.Krypt.11
VirITTrojan.Win32.VBZenPack_Heur
CyrenW32/Injector.AAF.gen!Eldorado
SymantecInfostealer
ESET-NOD32a variant of Win32/Injector.ELAF
APEXMalicious
CynetMalicious (score: 99)
KasperskyTrojan.Win32.Vebzenpak.gzg
BitDefenderGen:Heur.VB.Krypt.11
AvastWin32:Trojan-gen
SophosMal/FareitVB-AB
F-SecureTrojan.TR/Injector.qqygs
DrWebTrojan.Siggen9.19785
TrendMicroTrojanSpy.Win32.FAREIT.SME.hp
McAfee-GW-EditionFareit-FRP!0B8904C76CB6
Trapminemalicious.high.ml.score
EmsisoftGen:Heur.VB.Krypt.11 (B)
AviraTR/Injector.qqygs
MicrosoftTrojan:Win32/FormBook.AH!MTB
ZoneAlarmTrojan.Win32.Vebzenpak.gzg
GDataGen:Heur.VB.Krypt.11
GoogleDetected
BitDefenderThetaAI:Packer.A071C9EE20
ALYacGen:Heur.VB.Krypt.11
MAXmalware (ai score=82)
Cylanceunsafe
PandaTrj/GdSda.A
TrendMicro-HouseCallTrojanSpy.Win32.FAREIT.SME.hp
IkarusTrojan-Spy.LokiBot
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/GuLoader.VHHQ!tr
AVGWin32:Trojan-gen
DeepInstinctMALICIOUS
CrowdStrikewin/malicious_confidence_60% (D)

How to remove Trojan.Win32.Vebzenpak.gzg?

Trojan.Win32.Vebzenpak.gzg removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment