Trojan

How to remove “Trojan:Win32/Lotok.A!MTB”?

Malware Removal

The Trojan:Win32/Lotok.A!MTB is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan:Win32/Lotok.A!MTB virus can do?

  • Unconventionial language used in binary resources: Chinese (Traditional)
  • Authenticode signature is invalid

How to determine Trojan:Win32/Lotok.A!MTB?



File Info:

name: 00D7CA549733564C0B20.mlw
path: /opt/CAPEv2/storage/binaries/5d003dce679bbb01b8bffdc9f02a779eef74d02d53ce2a0e39135c9353b00ff8
crc32: 5A132259
md5: 00d7ca549733564c0b200e04c6ffdf3c
sha1: 6fe45ee2b4c3c54a8eede13274ab5209999b6979
sha256: 5d003dce679bbb01b8bffdc9f02a779eef74d02d53ce2a0e39135c9353b00ff8
sha512: 967725a80bcb034ef231391884db0b2af89b29a898b59c1ecea5554e7465b0a14c910bec6752b6d44320c899324fad70e95bc9d4d135ce0909195a5d47722d91
ssdeep: 384:Iq/btbJG9YmWHcdaILhRleEZn8Xy12BrzRDtadcvWd:IkttGXRs0jlew8U2ByJd
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T164038452BAEA0651E5BAFB3049B657305736BC5A7E30C76F4374FE0D0831A42AE6131E
sha3_384: 3fdb92eef5f4a662750b4dd3338707508e56dc3446fdaebf57c94643500afe7e81f069778b07aa0001f66c647eb95bca
ep_bytes: 558bec6aff68284e4000685630400064
timestamp: 2023-09-20 01:26:56


Version Info:

CompanyName: 
FileDescription: OcxTest MFC Application
FileVersion: 1, 0, 0, 1
InternalName: OcxTest
LegalCopyright: Copyright (C) 1997
LegalTrademarks: 
OriginalFilename: OcxTest.EXE
ProductName: OcxTest Application
ProductVersion: 1, 0, 0, 1
Translation: 0x0409 0x04b0

Trojan:Win32/Lotok.A!MTB also known as:

BkavW32.AIDetectMalware
FireEyeGeneric.mg.00d7ca549733564c
CyrenW32/Kryptik.KND.gen!Eldorado
SymantecML.Attribute.HighConfidence
Elasticmalicious (high confidence)
ESET-NOD32a variant of Win32/Agent.VHW
CynetMalicious (score: 100)
APEXMalicious
KasperskyHEUR:Backdoor.Win32.Agent.gen
RisingBackdoor.Gh0st!1.E957 (CLASSIC)
F-SecureTrojan.TR/Agent.vikrk
McAfee-GW-EditionArtemis!Trojan
Trapminemalicious.high.ml.score
IkarusBackdoor.Win32.Farfli
AviraTR/Agent.vikrk
MicrosoftTrojan:Win32/Lotok.A!MTB
ZoneAlarmHEUR:Backdoor.Win32.Agent.gen
GoogleDetected
McAfeeArtemis!00D7CA549733
DeepInstinctMALICIOUS
VBA32BScope.Trojan.Alisa
Cylanceunsafe
AVGWin32:MalwareX-gen [Trj]
AvastWin32:MalwareX-gen [Trj]
CrowdStrikewin/malicious_confidence_70% (W)

How to remove Trojan:Win32/Lotok.A!MTB?

Trojan:Win32/Lotok.A!MTB removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment