Trojan

What is “Trojan:Win32/Znyonm”?

Malware Removal

The Trojan:Win32/Znyonm is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan:Win32/Znyonm virus can do?

  • Sample contains Overlay data
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid
  • CAPE detected the shellcode get eip malware family
  • Anomalous binary characteristics

How to determine Trojan:Win32/Znyonm?



File Info:

name: 3D2DDF940800B7B061BB.mlw
path: /opt/CAPEv2/storage/binaries/e422cd29028e8cce7eb8fffca724c223328d1230becaa0928f02c926845912e0
crc32: 965A3909
md5: 3d2ddf940800b7b061bb7010558f79e4
sha1: 4348b77bffc820e68011ecbeb0cb574c6a6e93c2
sha256: e422cd29028e8cce7eb8fffca724c223328d1230becaa0928f02c926845912e0
sha512: 8e1da539d6f8ec82d391098c0ef87fcd50145076f99fe00049db3680cf38220b8c5907f13294d1fa333062231cf5a1be6864f096dab94967e2856cf6cb76927b
ssdeep: 49152:hbo+XSGVTCO6y/NficfTmIh4xRTXlJ5WPtIrTQUsQca/r0Ib8H:hbo+JTCtcVARhJ5WPtkZFcQvYH
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1BE066CA2B505B1CBD48F13B4556BCE82595D07B95B2048C3ED9C787ABEB3CC221BED24
sha3_384: 0cc1dd8c636102cc84c6d8c30102adb78c386ae0a357129e8fb405d9fe9cf201dd8d7a9d9b3f083a7cd09783a359964b
ep_bytes: c35889442404814424041c0000004050
timestamp: 2024-02-01 11:29:07


Version Info:

0: [No Data]

Trojan:Win32/Znyonm also known as:

BkavW32.AIDetectMalware
tehtrisGeneric.Malware
FireEyeGeneric.mg.3d2ddf940800b7b0
SkyhighBehavesLike.Win32.Generic.wm
McAfeeArtemis!3D2DDF940800
MalwarebytesMalware.AI.596961225
SangforSuspicious.Win32.Save.ins
CrowdStrikewin/malicious_confidence_90% (D)
SymantecML.Attribute.HighConfidence
ElasticWindows.Generic.Threat
ZonerProbably Heur.ExeHeaderL
APEXMalicious
ClamAVWin.Malware.Mikey-10019377-0
AvastWin32:TrojanX-gen [Trj]
Trapminemalicious.high.ml.score
SophosGeneric ML PUA (PUA)
IkarusTrojan.Patched
MicrosoftTrojan:Win32/Znyonm
GoogleDetected
Cylanceunsafe
RisingDownloader.Agent!1.D93C (CLASSIC)
SentinelOneStatic AI – Malicious PE
BitDefenderThetaGen:NN.ZexaE.36802.PxZ@a07pENd
AVGWin32:TrojanX-gen [Trj]
DeepInstinctMALICIOUS
alibabacloudVirTool:Win/Obfuscate.FakeEp.DYN(dyn)

How to remove Trojan:Win32/Znyonm?

Trojan:Win32/Znyonm removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment