Spy Trojan

UDS:Trojan-Spy.Win32.Stealer.cjvn removal

Malware Removal

The UDS:Trojan-Spy.Win32.Stealer.cjvn is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What UDS:Trojan-Spy.Win32.Stealer.cjvn virus can do?

  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • Sample contains Overlay data
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • Presents an Authenticode digital signature
  • Creates RWX memory
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid
  • CAPE detected the RedLine malware family
  • Anomalous binary characteristics

How to determine UDS:Trojan-Spy.Win32.Stealer.cjvn?



File Info:

name: A819087BD29B8A86F82D.mlw
path: /opt/CAPEv2/storage/binaries/3775e84889d9867452298e5ee74ff282ba79aa84fd427a45b09ec78d7f49546b
crc32: 27BABC73
md5: a819087bd29b8a86f82d2cca7686e68e
sha1: e74cfd2003441b29ad7dcd98e850f9381ae376b0
sha256: 3775e84889d9867452298e5ee74ff282ba79aa84fd427a45b09ec78d7f49546b
sha512: bc6099a9811fcbbca99bcd33e5e41c24aece4bd6c7a5019364008fa5a3ccfd49fcb628666c455eda2c47481d4fd366fa1912d852496006242742d3ab04b4e68e
ssdeep: 24576:LISXfSYpYnNfPOiMFxloy/KddqogrHdNVdZg1bUbXsrRnVJO/FzL/YcTs9l3RuQr:HXsdipT1dZ0E4RnVJO/FzRTs9l3L
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T14DC509036ACB0D75DDD23BB4A18B633BA734FD30CA2A9B7BB609C53559532C46C1A742
sha3_384: 2f8534491f1edd57d31a8c47b415628142c60e6b47364cd616d4b1cdd98ebbe1e7b1c71186d8ea8259c9d410c0df452c
ep_bytes: 83ec0cc705b873510000000000e80e3b
timestamp: 2022-08-09 20:31:16


Version Info:

0: [No Data]

UDS:Trojan-Spy.Win32.Stealer.cjvn also known as:

CAT-QuickHealTrojan.GenericPMF.S28392069
CylanceUnsafe
CyrenW32/Trojan.HLPX-5019
SymantecML.Attribute.HighConfidence
Elasticmalicious (high confidence)
ESET-NOD32a variant of Win32/Kryptik.HQDK
KasperskyUDS:Trojan-Spy.Win32.Stealer.cjvn
AvastFileRepMalware [Misc]
DrWebTrojan.PWS.Steam.31994
TrendMicroTrojanSpy.Win32.REDLINE.YXCHJZ
McAfee-GW-EditionArtemis!Trojan
SophosMal/Generic-S
IkarusTrojan.Win32.Krypt
GDataWin32.Trojan-Stealer.Cordimik.JVMLB3
MicrosoftTrojan:Win32/Sabsik.FL.B!ml
CynetMalicious (score: 100)
McAfeeArtemis!A819087BD29B
VBA32BScope.TrojanPSW.Arkei
MalwarebytesSpyware.PasswordStealer
TrendMicro-HouseCallTrojanSpy.Win32.REDLINE.YXCHJZ
RisingSpyware.Convagent!8.12330 (CLOUD)
SentinelOneStatic AI – Suspicious PE
FortinetW32/RedLineStealer.C!tr
AVGFileRepMalware [Misc]
CrowdStrikewin/malicious_confidence_70% (W)

How to remove UDS:Trojan-Spy.Win32.Stealer.cjvn?

UDS:Trojan-Spy.Win32.Stealer.cjvn removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment