Trojan:Win32/Ymacco.AA5C malicious file

The Trojan:Win32/Ymacco.AA5C is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Trojan:Win32/Ymacco.AA5C virus can do?

Uses Windows utilities for basic functionality
Network activity detected but not expressed in API logs

How to determine Trojan:Win32/Ymacco.AA5C?


File Info:
crc32: 7237F61D
md5: 87fadafde153ec4d73a358c4897e54e6
name: thumpxcache
sha1: 1745ada809a9e80f80ce8a38d2bb5858378a4206
sha256: 5cc02305d7b5cb0675f2ac65422a115aa44d8f28e5a2b759470d17d6bf851a3a
sha512: 15331c1964c1abfcdd31e2c3b40a744b0e33bf7df5c9749be1047d384cf5d34e86655d16fba2601156c56178b8f0e3e90405a70bd22d2f5794ff948c16881b88
ssdeep: 12288:RCdOy3vVrKxR5CXbNjAOxK/j2n+4YG/6c1mFFja3mXgcjfRlgsUBgagHCZu8i7i:RCdxte/80jYLT3U1jfsWaqeHfQ
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:
Translation: 0x0809 0x04b0

Trojan:Win32/Ymacco.AA5C also known as:

Bkav	W32.AIDetectVM.malware1
MicroWorld-eScan	Trojan.GenericKD.34137685
FireEye	Trojan.GenericKD.34137685
McAfee	RDN/Generic Downloader.x
K7AntiVirus	Trojan-Downloader ( 0056a4dc1 )
BitDefender	Trojan.GenericKD.34137685
TrendMicro	TrojanSpy.Win32.ANDROM.USXVPG920
ESET-NOD32	Win32/TrojanDownloader.Autoit.OZK
TrendMicro-HouseCall	TrojanSpy.Win32.ANDROM.USXVPG920
Avast	Win32:Trojan-gen
Alibaba	TrojanDownloader:Win32/Autoit.2de72cd3
APEX	Malicious
Ad-Aware	Trojan.GenericKD.34137685
Emsisoft	Trojan.GenericKD.34137685 (B)
F-Secure	Trojan.TR/Dldr.Autoit.gufrv
Sophos	Mal/Generic-S
Ikarus	Trojan-Downloader.Win32.AutoIt
Cyren	W32/Trojan.RSXM-0234
Avira	TR/Dldr.Autoit.gufrv
Fortinet	PossibleThreat.PALLAS.H
Arcabit	Trojan.Generic.D208E655
Microsoft	Trojan:Win32/Ymacco.AA5C
Cynet	Malicious (score: 85)
ALYac	Trojan.GenericKD.34137685
MAX	malware (ai score=86)
GData	Trojan.GenericKD.34137685
AVG	Win32:Trojan-gen
Paloalto	generic.ml
CrowdStrike	win/malicious_confidence_100% (W)
Qihoo-360	Generic/Trojan.0b7

How to remove Trojan:Win32/Ymacco.AA5C?

Trojan:Win32/Ymacco.AA5C removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X