Spy Trojan

About “TrojanSpy:Win32/Malintent” infection

Malware Removal

The TrojanSpy:Win32/Malintent is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What TrojanSpy:Win32/Malintent virus can do?

  • Sample contains Overlay data
  • Reads data out of its own binary image
  • Unconventionial language used in binary resources: Russian
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid
  • Uses Windows utilities for basic functionality
  • Uses Windows utilities to create a scheduled task

How to determine TrojanSpy:Win32/Malintent?



File Info:

name: 5ADAEE6099F0A30CED55.mlw
path: /opt/CAPEv2/storage/binaries/375a57b46ee0e13b5f3210b7ef93c43a25d4b4162c776fe7111c475b30bd5662
crc32: 3338D55D
md5: 5adaee6099f0a30ced55b9dd1ff0cac6
sha1: 15115e2c39b29203837522a45dd2ca4e4071c5d0
sha256: 375a57b46ee0e13b5f3210b7ef93c43a25d4b4162c776fe7111c475b30bd5662
sha512: 3bd92d655f1bb9ae743e8465dd2ee7926cf10c770af47335125d0c6ccb2165fd044e1cf4a62d89c178538f472f4e39bbb6e0b954fe7e34bb95a84b60becfbb05
ssdeep: 6144:yKrxiyLvmWVXGlmePxatfq3Pu+5ao8574EOl:LtLXhxePxatfq3V5A5kEM
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1CC44CF11B5C18032D10036FCAC0BD694A42E7E245AB9218777FA7B6D9DBA157CD283EF
sha3_384: 3ae2d061dcc6ee25629db20b9dd6e6d858298ad39d8ed3fdf76396f0a558c0dc4aba3dff7bc41fad92390128cbe74f07
ep_bytes: 558bec83c4f0b89c9a4100e8b8abfeff
timestamp: 1992-06-19 22:22:17


Version Info:

Comments: 
CompanyName: Vk.com                                                      
FileDescription: GetStyles-ВК 1.00 Installation                              
FileVersion: 1.00                
LegalCopyright: Vk.com                                                                                              
Translation: 0x0409 0x04e4

TrojanSpy:Win32/Malintent also known as:

BkavW32.AIDetectMalware
Elasticmalicious (moderate confidence)
K7AntiVirusTrojan ( 004b96a91 )
K7GWTrojan ( 004b96a91 )
CyrenHOST_trojan
ESET-NOD32multiple detections
APEXMalicious
CynetMalicious (score: 100)
AvastWin32:Dh-A [Heur]
McAfee-GW-EditionBehavesLike.Win32.Dropper.dc
SophosMal/Generic-S
MicrosoftTrojanSpy:Win32/Malintent
GoogleDetected
McAfeeArtemis!5ADAEE6099F0
PandaTrj/CI.A
IkarusTrojan.Win32.Crypt
MaxSecureTrojan.Malware.300983.susgen
AVGWin32:Dh-A [Heur]
DeepInstinctMALICIOUS

How to remove TrojanSpy:Win32/Malintent?

TrojanSpy:Win32/Malintent removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment