Trojan

Trojan.Win32.Yakes.wudg removal

Malware Removal

The Trojan.Win32.Yakes.wudg is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Win32.Yakes.wudg virus can do?

  • Executable code extraction
  • Attempts to connect to a dead IP:Port (1 unique times)
  • Creates RWX memory
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX
  • Attempts to repeatedly call a single API many times in order to delay analysis time
  • Steals private information from local Internet browsers
  • Spoofs its process name and/or associated pathname to appear as a legitimate process
  • Harvests credentials from local FTP client softwares
  • Harvests information related to installed instant messenger clients
  • Harvests information related to installed mail clients
  • Collects information to fingerprint the system

How to determine Trojan.Win32.Yakes.wudg?



File Info:

crc32: C67EC677
md5: fad4815c5b9d58964d77660562e64f2c
name: FAD4815C5B9D58964D77660562E64F2C.mlw
sha1: a141a96e177d947e6c7dea52b381b61393465c8b
sha256: 08ceb7d69f7a6ce39616eb9f508a585656c90d1d07dc88d4c86be739c51eee4e
sha512: fe2c656eafc6005889c9166dd028c02b42c3ab4ef1424ae4f199284e471a17067e5a9c8b63364b647a0d00ba7bfd9d7d6f982ed49ddd0ae59794ae5a90c698ad
ssdeep: 12288:EBoS8tC2DYk/60kE8WQg5oSMWxu9k8mRBT311nz:0CC5SNkEEWUJmnlBz
type: PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed


Version Info:

LegalCopyright: Copyright xa9Instacart 2016  All rights reserved.
InternalName: Besides
FileVersion: 2.4.2.4
CompanyName: Instacart
FileDescription: Mjr Hardings
LegalTrademarks: Copyright xa9Instacart 2016  All rights reserved.
Comments: Mjr Hardings
ProductName: Besides
ProductVersion: 2.4.2.4
PrivateBuild: 2.4.2.4
OriginalFilename: Besides
Translation: 0x0409 0x04b0

Trojan.Win32.Yakes.wudg also known as:

BkavW32.AIDetect.malware1
Elasticmalicious (high confidence)
DrWebTrojan.PWS.Stealer.23680
ALYacGen:Variant.Ransom.Scarab.43
CylanceUnsafe
ZillyaTrojan.GenericKD.Win32.130151
SangforTrojan.Win32.Yakes.wudg
CrowdStrikewin/malicious_confidence_60% (D)
AlibabaTrojan:Win32/Yakes.9de32bf7
K7GWTrojan ( 00537eba1 )
K7AntiVirusTrojan ( 00537eba1 )
SymantecTrojan Horse
ESET-NOD32a variant of Win32/Kryptik.GIWU
APEXMalicious
AvastWin32:Malware-gen
CynetMalicious (score: 99)
KasperskyTrojan.Win32.Yakes.wudg
BitDefenderGen:Variant.Ransom.Scarab.43
NANO-AntivirusTrojan.Win32.Yakes.ffkwha
MicroWorld-eScanGen:Variant.Ransom.Scarab.43
TencentMalware.Win32.Gencirc.114d4d9f
Ad-AwareGen:Variant.Ransom.Scarab.43
SophosMal/Generic-S
ComodoMalware@#2fiyn4eh2ljcn
BitDefenderThetaGen:NN.ZexaF.34088.ymLfaK@HJbgi
VIPRETrojan.Win32.Generic!BT
McAfee-GW-EditionBehavesLike.Win32.TrojanAitInject.fc
FireEyeGeneric.mg.fad4815c5b9d5896
EmsisoftGen:Variant.Ransom.Scarab.43 (B)
SentinelOneStatic AI – Suspicious PE
JiangminTrojan.Yakes.aaho
AviraHEUR/AGEN.1120572
eGambitUnsafe.AI_Score_99%
Antiy-AVLTrojan/Generic.ASMalwS.2805905
KingsoftWin32.Troj.Undef.(kcloud)
MicrosoftTrojan:Win32/Sonoko.A!rfn
ZoneAlarmTrojan.Win32.Yakes.wudg
GDataGen:Variant.Ransom.Scarab.43
AhnLab-V3Malware/Win32.Generic.C2621889
McAfeeGeneric.dwc
MAXmalware (ai score=96)
VBA32Trojan.Yakes
PandaTrj/CI.A
YandexTrojan.Yakes!kasAUYwezHk
IkarusTrojan.Win32.Crypt
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/Kryptik.GIWU!tr
AVGWin32:Malware-gen
Paloaltogeneric.ml
Qihoo-360Win32/Botnet.Yakes.HwsBXL8A

How to remove Trojan.Win32.Yakes.wudg?

Trojan.Win32.Yakes.wudg removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment