VHO:Trojan.Win32.Injurer removal guide

The VHO:Trojan.Win32.Injurer is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What VHO:Trojan.Win32.Injurer virus can do?

Behavioural detection: Executable code extraction – unpacking
Sample contains Overlay data
Presents an Authenticode digital signature
CAPE extracted potentially suspicious content
Authenticode signature is invalid

How to determine VHO:Trojan.Win32.Injurer?


File Info:
name: 8375581AE25D014825B6.mlw
path: /opt/CAPEv2/storage/binaries/4271fc19c09a74df1260b6145a99db54d506a5c9faffde34f0428dfaa14b5762
crc32: D720DD4F
md5: 8375581ae25d014825b6b030909dae97
sha1: 2e9a1a098e088f86cf183f905244ce2b0f841237
sha256: 4271fc19c09a74df1260b6145a99db54d506a5c9faffde34f0428dfaa14b5762
sha512: 2892f7046273fd49e4d4186712a83dab45d2c290d62003f9a37a0b13a0098254c7bcd1fb7815aa77000c490a05bd0881d9fabc6414ac46100b35eb1d68767410
ssdeep: 1536:sMRgVOc9Hm2YfcoISToSclYmi8d/7TPxw:sMRgVftR4ToScC0d/fx
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T1F0A38D12B2E0D836C587587124A9C6B55AEEF9319B6092C337E84B7F1F203D14B7A35B
sha3_384: 807e146df8a5176b26742199b8aeaa1caa04265d8972b6bf5692a3d5d4cff1573738a5828a7b625e99678d54571c0483
ep_bytes: e8173c0000e9a4feffff3b0d3c5d4100
timestamp: 2023-06-10 14:07:20

Version Info:
Comments: Il s'agit d'une application légitime.
CompanyName: Renault S.A.
FileDescription: Renault S.A. Produit
FileVersion: 231
InternalName: ApplicationInterne
LegalCopyright: Droit d'auteur Â© Renault S.A. Tous droits réservés.
LegalTrademarks: Marques déposées Â© Renault S.A.
OriginalFilename: app.exe
ProductName: Application
ProductVersion: 231
Translation: 0x0407 0x04b0

VHO:Trojan.Win32.Injurer also known as:

Bkav	W32.AIDetectMalware
FireEye	Generic.mg.8375581ae25d0148
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (high confidence)
Kaspersky	VHO:Trojan.Win32.Injurer.gen
Avast	CrypterX-gen [Trj]
Trapmine	malicious.high.ml.score
Ikarus	Trojan-Spy.Agent
ZoneAlarm	VHO:Trojan.Win32.Injurer.gen
Microsoft	Trojan:Win32/Sabsik.FL.B!ml
Google	Detected
Cylance	unsafe
MaxSecure	PSW.W32.Coins.gen_265938
BitDefenderTheta	Gen:NN.ZexaF.36250.gq2@aeS2Uaji
AVG	CrypterX-gen [Trj]
DeepInstinct	MALICIOUS
CrowdStrike	win/malicious_confidence_70% (D)

How to remove VHO:Trojan.Win32.Injurer?

VHO:Trojan.Win32.Injurer removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X