Trojan

About “Trojan.Win32.Yakes.wrxc” infection

Malware Removal

The Trojan.Win32.Yakes.wrxc is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Win32.Yakes.wrxc virus can do?

  • Executable code extraction
  • Creates RWX memory
  • A process created a hidden window
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX
  • Attempts to repeatedly call a single API many times in order to delay analysis time
  • Steals private information from local Internet browsers
  • Exhibits behavior characteristic of Pony malware
  • Collects information about installed applications
  • Harvests credentials from local FTP client softwares
  • Harvests information related to installed mail clients

Related domains:

myp0nysite.ru

How to determine Trojan.Win32.Yakes.wrxc?



File Info:

crc32: ACDDC6D1
md5: 1d39caf49956b39411099339914ccffc
name: 1D39CAF49956B39411099339914CCFFC.mlw
sha1: 8db895f793b75337b1eb4b846fa93d78275261f0
sha256: ca87cae4178948ec9ae47c09a34a78e89ec84287dceadceac4543ae905c63e42
sha512: f3da5c9aa6f3511877e28fe47c60f92ccee7aa21801c34b1562a80332327641ff7eb4386894d792fcef0ba912de7966ab4a1ec967a0491210b32cf7f7aea4f5d
ssdeep: 12288:85wLRwO+kyheb8El82ijWVhdePIix7qTvk8BIUJ4q6H:856RwO+KHijWGx7qTvCUJsH
type: PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed


Version Info:

LegalCopyright: Copyright xa9Lu.com 1995-Present 
InternalName: DependencyEssentially
FileVersion: 1.9.90.4
CompanyName: Lu.com
FileDescription: Computer's Kat Imagestream Piecewise
LegalTrademarks: Copyright xa9Lu.com 1995-Present 
ProductName: DependencyEssentially
Languages: English
ProductVersion: 1.9.90.4
PrivateBuild: 1.9.90.4
OriginalFilename: DependencyEssentially.exe
Translation: 0x0409 0x04b0

Trojan.Win32.Yakes.wrxc also known as:

K7AntiVirusPassword-Stealer ( 004d88671 )
LionicUds.Dangerousobject.Multi!c
MicroWorld-eScanTrojan.GenericKD.31044454
CAT-QuickHealTrojan.Pynamer
ALYacTrojan.GenericKD.31044454
ZillyaTrojan.Yakes.Win32.68899
CrowdStrikemalicious_confidence_70% (D)
K7GWPassword-Stealer ( 004d88671 )
TrendMicroTROJ_FRS.VSN0BG18
BaiduWin32.Trojan.WisdomEyes.16070401.9500.9818
NANO-AntivirusTrojan.Win32.Stealer.fetxou
CyrenW32/Trojan.HTVY-7079
SymantecTrojan Horse
ESET-NOD32Win32/PSW.Fareit.L
AvastWin32:Dropper-gen [Drp]
GDataTrojan.GenericKD.31044454
KasperskyTrojan.Win32.Yakes.wrxc
BitDefenderTrojan.GenericKD.31044454
ViRobotTrojan.Win32.Z.Highconfidence.1274200
TencentWin32.Trojan.Yakes.Dzan
Ad-AwareTrojan.GenericKD.31044454
SophosTroj/Fareit-FFI
F-SecureTrojan.GenericKD.31044454
DrWebTrojan.PWS.Stealer.1932
VIPRETrojan.Win32.Generic!BT
Invinceaheuristic
McAfee-GW-EditionBehavesLike.Win32.Dropper.tz
EmsisoftTrojan.GenericKD.31044454 (B)
SentinelOnestatic engine – malicious
Endgamemalicious (moderate confidence)
WebrootW32.Trojan.Gen
AviraHEUR/AGEN.1032146
Antiy-AVLTrojan/Win32.TSGeneric
MicrosoftTrojan:Win32/Pynamer.A!ac
JiangminTrojan.Yakes.aack
ArcabitTrojan.Generic.D1D9B366
ZoneAlarmTrojan.Win32.Yakes.wrxc
McAfeeArtemis!1D39CAF49956
AVwareTrojan.Win32.Generic!BT
MAXmalware (ai score=95)
VBA32TrojanPSW.Stealer
MalwarebytesSpyware.Pony
PandaTrj/Downloader.WKY
TrendMicro-HouseCallTROJ_FRS.VSN0BG18
RisingStealer.Fareit!8.170 (CLOUD)
YandexTrojan.Yakes!SrsjsR3ObFA
IkarusTrojan.Crypt
FortinetW32/Fareit.L!tr.pws
AVGWin32:Dropper-gen [Drp]
Paloaltogeneric.ml
Qihoo-360Win32/Trojan.3fe

How to remove Trojan.Win32.Yakes.wrxc?

Trojan.Win32.Yakes.wrxc removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment