How to remove “UDS:Trojan-Spy.Win32.Stealer.cngh”?

The UDS:Trojan-Spy.Win32.Stealer.cngh is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What UDS:Trojan-Spy.Win32.Stealer.cngh virus can do?

Authenticode signature is invalid

How to determine UDS:Trojan-Spy.Win32.Stealer.cngh?


File Info:
name: FFBBAEF06213A628C110.mlw
path: /opt/CAPEv2/storage/binaries/c9f080f568337092b4937caba8f48a5e0e66c832fe9490aa807710b10dfa148d
crc32: A76A8C03
md5: ffbbaef06213a628c110faf3fee96065
sha1: fad3609e4350df644d7bd8235dc10f34cf4de32b
sha256: c9f080f568337092b4937caba8f48a5e0e66c832fe9490aa807710b10dfa148d
sha512: 781f03e4e3d2c13225693e1f8d6c8993f61f9ee45cb6e6606586cc21a9962c513edf0effb1c05bae49e6c0128c90402217e616364210eb7b81a2853ee98da930
ssdeep: 24576:u/tYZrY9YENlWTtMhVJGoXMrafnkZgi6J/3Q:etesV8Ei6Q
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T17F355C29EB4B28F0DA275672854FDB7B9B18BA148023EE3FFF5BDA14A4330163C85155
sha3_384: 815b9302d32301f7df3533ce65a4187beda3e91b13f054ae22241fb75a40c2651f2f985a730aca45b726024a96dca0d6
ep_bytes: 83ec0cc705b843510000000000e81e7a
timestamp: 2022-09-02 16:10:05

Version Info:
0: [No Data]

UDS:Trojan-Spy.Win32.Stealer.cngh also known as:

Elastic	malicious (high confidence)
Cynet	Malicious (score: 100)
FireEye	Gen:Variant.Fragtor.137304
McAfee	GenericRXUB-OK!FFBBAEF06213
Malwarebytes	Malware.AI.4214964351
Arcabit	Trojan.Fragtor.D21858
Cyren	W32/Convagent.AM.gen!Eldorado
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win32/Kryptik.HQOF
APEX	Malicious
Kaspersky	UDS:Trojan-Spy.Win32.Stealer.cngh
BitDefender	Gen:Variant.Fragtor.137304
MicroWorld-eScan	Gen:Variant.Fragtor.137304
Avast	Win32:TrojanX-gen [Trj]
Ad-Aware	Gen:Variant.Fragtor.137304
Emsisoft	Gen:Variant.Fragtor.137304 (B)
McAfee-GW-Edition	Artemis
Microsoft	Trojan:Win32/Sabsik.FL.B!ml
ZoneAlarm	UDS:Trojan-Spy.Win32.Stealer.cngh
GData	Win32.Trojan.PSE.1PJLW8D
Google	Detected
AhnLab-V3	Malware/Win.Generic.C5231537
VBA32	BScope.TrojanPSW.RedLine
ALYac	Gen:Variant.Doris.12884
MAX	malware (ai score=88)
Cylance	Unsafe
Rising	Trojan.Kryptik!8.8 (TFE:5:qFgFsCC2vGK)
SentinelOne	Static AI – Suspicious PE
MaxSecure	Trojan.Malware.121218.susgen
Fortinet	W32/DotNetPacker.A!tr
AVG	Win32:TrojanX-gen [Trj]

How to remove UDS:Trojan-Spy.Win32.Stealer.cngh?

UDS:Trojan-Spy.Win32.Stealer.cngh removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X