How to remove “Trojan:Win32/Znyonm”?

The Trojan:Win32/Znyonm is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Trojan:Win32/Znyonm virus can do?

Sample contains Overlay data
The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid
Anomalous binary characteristics

How to determine Trojan:Win32/Znyonm?


File Info:
name: 711F42A0431D8DBE619D.mlw
path: /opt/CAPEv2/storage/binaries/3bd77f9ad00f05c7708c3f17f8f8fbc3d5b825478bbf1ecac4312e1935b0535b
crc32: 06B4B3C7
md5: 711f42a0431d8dbe619ded7a89c2a8ba
sha1: 61fb8a880d2e2be6a0214a02409f976c0801a812
sha256: 3bd77f9ad00f05c7708c3f17f8f8fbc3d5b825478bbf1ecac4312e1935b0535b
sha512: b49d82f5bfc340da272248577d90d7642861fa4458ff5942e74cadfcacc7e4931bc27816c379426211e45632e29f29fc3071de8f55871a89c1b737a6f8de9b67
ssdeep: 24576:IUPPcBYxTS4lC5pi32aIcWI7EL0t5bVCe5r9lYmvMXr7Ku2kqKb8OJ:IexkppeGHdq
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T119A57EE1A392C857C0931B34DD5B83985A2EBF181F2804C779A45D7CAF356617C22BBB
sha3_384: 30fab3be1a8a2e48fd7d5fe21130f87b27152cd9df9aff046010e3241e02d2110755b915daa91ce71df0191e17ceb686
ep_bytes: 558bec83c4f0b8f4425a00e839006438
timestamp: 2011-01-27 10:43:15

Version Info:
0: [No Data]

Trojan:Win32/Znyonm also known as:

Bkav	W32.AIDetectMalware
FireEye	Generic.mg.711f42a0431d8dbe
Cybereason	malicious.80d2e2
BitDefenderTheta	Gen:NN.ZelphiF.36744.hIY@aihbbwk
APEX	Malicious
Cynet	Malicious (score: 100)
Trapmine	suspicious.low.ml.score
Sophos	Generic ML PUA (PUA)
Google	Detected
Microsoft	Trojan:Win32/Znyonm
Varist	W32/Xpack.E.gen!Eldorado
Malwarebytes	MachineLearning/Anomalous.100%
Rising	Trojan.Generic@AI.100 (RDML:VQRCUKfTORUAbT3Tigd+yg)
MaxSecure	Trojan.Malware.300983.susgen
DeepInstinct	MALICIOUS
CrowdStrike	win/malicious_confidence_60% (W)

How to remove Trojan:Win32/Znyonm?

Trojan:Win32/Znyonm removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X