Trojan

TrojanDownloader:Win32/Harnig.S removal instruction

Malware Removal

The TrojanDownloader:Win32/Harnig.S is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What TrojanDownloader:Win32/Harnig.S virus can do?

  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid

How to determine TrojanDownloader:Win32/Harnig.S?



File Info:

name: 9D13490167C8E5FC04AD.mlw
path: /opt/CAPEv2/storage/binaries/c96b8419591c291a01ca9ed14c2c51e863ae5d5ee9f2fafb70c6740b61058dbe
crc32: 9AFEACD2
md5: 9d13490167c8e5fc04adb41931b6e037
sha1: d19ec89724ed28108657854d0b79d92090166af8
sha256: c96b8419591c291a01ca9ed14c2c51e863ae5d5ee9f2fafb70c6740b61058dbe
sha512: 8f18409d2a7df8ce1a056c1cf28664e5105954e8ff55f49d7fd46d0edd39d0bf156ccff26583b49f9a1c826ccd43935734d200b0f10c1b1a4f42455a88f35be8
ssdeep: 384:m6sQRTRhwk0p926f96vMnsYL+JtEZaqnHo1IquxnNnj6jHzPnu:7rBG9FxnsYMtUhnHo1Iquxn1WjTPnu
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1FF922AB35E56930DF2512F38772A01A6B89AED3DB13FC31D12929E674538344C0C867E
sha3_384: b3998ac53c608e81de5a5ca21f869f69551f88e8d6a26e3e921e55597bc4308bdcff0024c49f971f9b1b7fc3e84eb09c
ep_bytes: 558bec81ecd4020000c685d3fdffff0e
timestamp: 2007-07-13 07:10:35


Version Info:

CompanyName: TWX Corp.
FileDescription: Windows NT ClipBook Viewer
FileVersion: 4.2.2700.5512
InternalName: PR2S
LegalCopyright: TWX Corporation. All rights reserved
OriginalFilename: PR2S.EXE
ProductName: PR2S
ProductVersion: 4.2.2700.5512
Translation: 0x0409 0x04b0

TrojanDownloader:Win32/Harnig.S also known as:

BkavW32.LdPinchQKC.Fam.Trojan
LionicTrojan.Win32.Generic.li22
AVGWin32:Crypt-FWN [Trj]
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Heur.Krypt.22
FireEyeGeneric.mg.9d13490167c8e5fc
SkyhighBehavesLike.Win32.Generic.lh
McAfeePWS-Zbot.gen.ak
Cylanceunsafe
ZillyaTrojan.Kryptik.Win32.61169
SangforSuspicious.Win32.Save.a
K7AntiVirusTrojan ( 005325641 )
AlibabaVirTool:Win32/Obfuscator.63faa5f6
K7GWTrojan ( 005325641 )
Cybereasonmalicious.167c8e
BitDefenderThetaAI:Packer.81B12E3E1F
VirITPacked.Win32.Krap.AO
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/Kryptik.CQZ
CynetMalicious (score: 100)
APEXMalicious
ClamAVWin.Trojan.Crypt-425
KasperskyPacked.Win32.Krap.ao
BitDefenderGen:Heur.Krypt.22
NANO-AntivirusTrojan.Win32.Krap.wpxdd
AvastWin32:Crypt-FWN [Trj]
TencentMalware.Win32.Gencirc.13ff2922
EmsisoftGen:Heur.Krypt.22 (B)
F-SecureTrojan.TR/ATRAPS.Gen2
DrWebTrojan.DownLoad1.42513
VIPREGen:Heur.Krypt.22
TrendMicroTROJ_BURNIX.SMF
SophosMal/FakeAV-BW
IkarusTrojan.Win32.Ransom
JiangminPacked.Krap.bmtm
VaristW32/Agent.FG.gen!Eldorado
AviraTR/ATRAPS.Gen2
Antiy-AVLTrojan[Packed]/Win32.Krap
KingsoftWin32.Troj.Undef.a
MicrosoftTrojanDownloader:Win32/Harnig.S
XcitiumTrojWare.Win32.PkdKrap.AO@2mkvi8
ArcabitTrojan.Krypt.22
ViRobotTrojan.Win32.Krap.18432.AE
ZoneAlarmPacked.Win32.Krap.ao
GDataGen:Heur.Krypt.22
GoogleDetected
AhnLab-V3Win-Trojan/Burnix.Gen
VBA32BScope.Trojan.MTA.0671
MAXmalware (ai score=100)
MalwarebytesMachineLearning/Anomalous.95%
PandaTrj/Genetic.gen
TrendMicro-HouseCallTROJ_BURNIX.SMF
RisingDownloader.Harnig!8.28D (TFE:2:bQhb5tbbl6L)
YandexTrojan.DL.Harnig!phbjms5Cslk
SentinelOneStatic AI – Malicious PE
MaxSecureTrojan.Malware.923818.susgen
FortinetW32/Krapt.AOA!tr
DeepInstinctMALICIOUS
CrowdStrikewin/malicious_confidence_100% (W)
alibabacloudVirtool:Win/Krap.ao

How to remove TrojanDownloader:Win32/Harnig.S?

TrojanDownloader:Win32/Harnig.S removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment