Trojan

Trojan.Win32.Witch.gnd information

Malware Removal

The Trojan.Win32.Witch.gnd is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Win32.Witch.gnd virus can do?

  • Executable code extraction
  • A process attempted to delay the analysis task.
  • Reads data out of its own binary image
  • Drops a binary and executes it
  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

How to determine Trojan.Win32.Witch.gnd?



File Info:

crc32: B5C7B72E
md5: cb7d61c808cf4eb8cb2aea6fdc66bc03
name: CB7D61C808CF4EB8CB2AEA6FDC66BC03.mlw
sha1: 712e5e4135d268f5c531f7204e4fd6a32505680b
sha256: e1644af6747da3ab56f40464642380f58f421979a9445e02d75fd1eb5a6f27c3
sha512: e54f0ec23e412d629bd92bbbd06181f406e9ec9ba9cf409f069e2181de0a7f04ec5b65781bd6577f75c15178ed2d6d934677ba80c062d72cb929c3b807c0c8ba
ssdeep: 49152:Qyt8GpDavwe8qtkoLE7dCvLlw0RFKmoYuznhZJ3N3Vm5dSaJ6Jx1Uj71:QKTxorcdQLlwwFKvznhZteJ6JG1
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright: Copyright (C) 2021 ColorationGame Education 
FileVersion: 11.11.52.12
CompanyName: ColorationGame Education Limited
LegalTrademarks: ColorationGame Education 
ProductName: ColorationGame pro LLC
ProductVersion: 11.11.52.12
FileDescription: ColorationGame Education 2021
Translation: 0x0409 0x04e4

Trojan.Win32.Witch.gnd also known as:

BkavW32.AIDetect.malware2
K7AntiVirusRiskware ( 00584baa1 )
LionicTrojan.Win32.Witch.4!c
CynetMalicious (score: 100)
CylanceUnsafe
AlibabaTrojan:Win32/Witch.a4710099
K7GWRiskware ( 00584baa1 )
APEXMalicious
AvastWin32:Malware-gen
KasperskyTrojan.Win32.Witch.gnd
SophosMal/Generic-S
McAfee-GW-EditionBehavesLike.Win32.Dropper.wc
FireEyeGeneric.mg.cb7d61c808cf4eb8
AviraHEUR/AGEN.1100705
MicrosoftTrojan:Win32/Wacatac.B!ml
GridinsoftRansom.Win32.Sabsik.sa
McAfeeArtemis!CB7D61C808CF
VBA32Trojan.Witch
TrendMicro-HouseCallTROJ_GEN.R002H07K821
AVGWin32:Malware-gen

How to remove Trojan.Win32.Witch.gnd?

Trojan.Win32.Witch.gnd removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment