Trojan.Win32.Zenpak.sbs (file analysis)

Malware Removal

The Trojan.Win32.Zenpak.sbs is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

ribbon

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
THANK YOU!
DOWNLOAD NOW
On Going Offer

What Trojan.Win32.Zenpak.sbs virus can do?

  • Executable code extraction
  • Creates RWX memory
  • Performs some HTTP requests
  • The binary likely contains encrypted or compressed data.
  • Installs itself for autorun at Windows startup
  • Creates a hidden or system file
  • Creates a copy of itself
  • Anomalous binary characteristics

Related domains:

redirector.gvt1.com

How to determine Trojan.Win32.Zenpak.sbs?


File Info:

crc32: 925490F9
md5: fe9ecea821f94c0f51c203df9fe8e22b
name: isb777amx.exe
sha1: 37d2f43e3982d280be2679baa0374db4e3f7f219
sha256: 48e4552ed69de24287939835e4333a4d1fc62a78a730940d8df585b3af9815f7
sha512: 93c4237eced462c639309e2986d1752b9602b02e586933dee3706727c36a3ca4213344caa94bf513ff2c34547377f83e9d7c4fa7f4f2b53976ff99e65f03d84e
ssdeep: 6144:z9lMhkm+tkMb4lUhT37mdqRFp1lDkfEqCTS1wj:RZjh7m8flmlP1I
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:

Translation: 0x0219 0x04e4

Trojan.Win32.Zenpak.sbs also known as:

MicroWorld-eScanTrojan.GenericKD.32769162
McAfeeRDN/Generic.grp
CylanceUnsafe
SangforMalware
K7AntiVirusTrojan ( 003c36381 )
AlibabaTrojan:Win32/Zenpak.0adc0fab
K7GWTrojan ( 003c36381 )
CrowdStrikewin/malicious_confidence_90% (W)
ArcabitTrojan.Generic.D1F4048A
ESET-NOD32a variant of Win32/Kryptik.GYYN
APEXMalicious
Paloaltogeneric.ml
ClamAVWin.Packed.Tofsee-7413745-0
KasperskyTrojan.Win32.Zenpak.sbs
BitDefenderTrojan.GenericKD.32769162
NANO-AntivirusTrojan.Win32.Inject3.gjxvfh
RisingTrojan.Generic@ML.100 (RDMK:Tx4e6jyhwYd6tV/WV+Aa6w)
Ad-AwareTrojan.GenericKD.32769162
ComodoMalware@#lwgaj266q4nk
DrWebTrojan.Inject3.31183
Invinceaheuristic
McAfee-GW-EditionBehavesLike.Win32.MultiPlug.fc
FortinetMalicious_Behavior.SB
Trapminemalicious.high.ml.score
FireEyeGeneric.mg.fe9ecea821f94c0f
SophosMal/Generic-S
IkarusTrojan.Win32.Crypt
CyrenW32/Trojan.CBRG-2646
JiangminTrojanDownloader.Bandit.ayc
Endgamemalicious (high confidence)
MicrosoftTrojan:Win32/GandCrypt.GE!MTB
ZoneAlarmTrojan.Win32.Zenpak.sbs
Acronissuspicious
BitDefenderThetaGen:NN.ZexaF.32517.tu0@aKKGIJn
ALYacTrojan.GenericKD.32769162
VBA32Malware-Cryptor.Limpopo
MalwarebytesTrojan.MalPack.GS
PandaGeneric Malware
TrendMicro-HouseCallTROJ_GEN.R023C0DL219
SentinelOneDFI – Malicious PE
MaxSecureTrojan.Malware.300983.susgen
GDataTrojan.GenericKD.32769162
AVGFileRepMalware
AvastFileRepMalware
Qihoo-360Win32/Trojan.7cf

How to remove Trojan.Win32.Zenpak.sbs?

Trojan.Win32.Zenpak.sbs removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

Leave a Comment