Trojan

How to remove “Trojan:Win32/InjectorCrypt!pz”?

Malware Removal

The Trojan:Win32/InjectorCrypt!pz is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan:Win32/InjectorCrypt!pz virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • HTTPS urls from behavior.
  • CAPE extracted potentially suspicious content
  • The binary contains an unknown PE section name indicative of packing
  • The executable is compressed using UPX
  • Authenticode signature is invalid
  • Attempts to modify proxy settings
  • Deletes executed files from disk
  • Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine Trojan:Win32/InjectorCrypt!pz?



File Info:

name: 5DE9C3E3F443923C042D.mlw
path: /opt/CAPEv2/storage/binaries/127f989598ef1732798caf25ca21838487add4c061a0ccd47d22e62f9feeef35
crc32: 6DE3B7CA
md5: 5de9c3e3f443923c042d29710d33eac2
sha1: 0f54de05254a2f7f3e3c70bfbc6b095deb4c5dc5
sha256: 127f989598ef1732798caf25ca21838487add4c061a0ccd47d22e62f9feeef35
sha512: f379d1920e11397a2e7c14742d5c4c70a42275aeb533c3aec354577ba456c508b8bf927ec4bfbb8f37a2518d432c8b8fa6c75c9142fa498cd209915a7249877e
ssdeep: 3072:saNtPycNrX0O2CYiujDdGFIVMSOvSS1wqTQ:sqqcFX3LYiy6ScnQ
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T154D30297F84CAB7EE8643AFF11564033F297D562BBC1859C9940BD69AE3A71CC103187
sha3_384: 3533faf904ad3a1fa8d764321f260594fc975f3074e53ef87ad7d1868e88d6ba9a23c7cc085f6db4ac9c2ff94ad20b78
ep_bytes: 5589e5bb0000000089f909c089f081c6
timestamp: 1970-01-01 00:00:00


Version Info:

0: [No Data]

Trojan:Win32/InjectorCrypt!pz also known as:

BkavW32.AIDetectMalware
LionicTrojan.Win32.Copak.4!c
tehtrisGeneric.Malware
MicroWorld-eScanGen:Trojan.Heur.imW@!hBy@@e
FireEyeGeneric.mg.5de9c3e3f443923c
SkyhighBehavesLike.Win32.Generic.cm
ALYacGen:Trojan.Heur.imW@!hBy@@e
Cylanceunsafe
ZillyaTrojan.CopakGen.Win32.1
SangforSuspicious.Win32.Save.a
K7AntiVirusTrojan ( 0058c5ff1 )
AlibabaTrojan:Win32/Copak.a398441f
K7GWTrojan ( 0058c5ff1 )
CrowdStrikewin/malicious_confidence_100% (W)
ArcabitTrojan.Heur.EFD32A
BitDefenderThetaAI:Packer.335106D81B
SymantecML.Attribute.HighConfidence
Elasticmalicious (high confidence)
ESET-NOD32a variant of Win32/Injector.DZQA
CynetMalicious (score: 100)
APEXMalicious
KasperskyHEUR:Trojan.Win32.Copak.pef
BitDefenderGen:Trojan.Heur.imW@!hBy@@e
AvastWin32:Evo-gen [Trj]
TencentTrojan.Win32.Copak.pe
EmsisoftGen:Trojan.Heur.imW@!hBy@@e (B)
F-SecureTrojan.TR/Crypt.XPACK.Gen
DrWebTrojan.Packed2.43250
VIPREGen:Trojan.Heur.imW@!hBy@@e
TrendMicroTROJ_GEN.R002C0DJP23
SophosMal/HckPk-A
IkarusTrojan.Win32.Injector
JiangminTrojan.Copak.anoa
VaristW32/Kryptik.DZR.gen!Eldorado
AviraTR/Crypt.XPACK.Gen
Antiy-AVLTrojan/Win32.Injector
KingsoftWin32.Troj.Agent.cks
XcitiumPacked.Win32.MUPX.Gen@24tbus
MicrosoftTrojan:Win32/InjectorCrypt!pz
ZoneAlarmHEUR:Trojan.Win32.Copak.pef
GDataGen:Trojan.Heur.imW@!hBy@@e
GoogleDetected
AhnLab-V3Malware/Win32.Generic.C2860595
McAfeeGenericRXAA-FA!5DE9C3E3F443
MAXmalware (ai score=81)
VBA32BScope.Trojan.Wacatac
MalwarebytesTrojan.MalPack.Generic
PandaTrj/Genetic.gen
TrendMicro-HouseCallTROJ_GEN.R002C0DJP23
RisingTrojan.Injector!1.C865 (CLASSIC)
YandexTrojan.Copak!ewFK0tCWccA
SentinelOneStatic AI – Malicious PE
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/Kryptik.EAHK!tr
AVGWin32:Evo-gen [Trj]
Cybereasonmalicious.5254a2
DeepInstinctMALICIOUS

How to remove Trojan:Win32/InjectorCrypt!pz?

Trojan:Win32/InjectorCrypt!pz removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment