Malware

About “VirTool:Win32/CeeInject.APX!bit” infection

Malware Removal

The VirTool:Win32/CeeInject.APX!bit is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
6-day free trial available.

What VirTool:Win32/CeeInject.APX!bit virus can do?

  • Executable code extraction
  • Injection (inter-process)
  • Injection (Process Hollowing)
  • Creates RWX memory
  • Expresses interest in specific running processes
  • The binary likely contains encrypted or compressed data.
  • Executed a process and injected code into it, probably while unpacking
  • Tries to unhook or modify Windows functions monitored by Cuckoo
  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

How to determine VirTool:Win32/CeeInject.APX!bit?


File Info:

crc32: 23D311E2
md5: 598f9c4cd0f1ab052774ae29aaa1c1e1
name: steph.exe
sha1: 886e9da1fe25a67934cff6b2fb5018a543a21fcc
sha256: 2b08bda0b1cdc86197a4cfffa51bb6898c83067bfc4d0568a0bd214a5ba862fe
sha512: b1ff8ed7ea0a0cb643f2c95ef8346070e1241cf215c5de1b41d4d50d0143562563627bfe44c1e64918dcd0a164bb0bcf6076ec1a37b9c463cf70f52793447f4f
ssdeep: 12288:QVf77LkFR/BhA26In0ni/l4+GrVFBRdk8qCQUJzZPK0Nbrh2dOGM+EyiFZ:Qd7kDA2JH99GBw8q6zZD2cG0yiz
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:

0: [No Data]

VirTool:Win32/CeeInject.APX!bit also known as:

MicroWorld-eScanTrojan.Delf.FareIt.Gen.1
FireEyeGeneric.mg.598f9c4cd0f1ab05
ALYacTrojan.Delf.FareIt.Gen.1
MalwarebytesTrojan.MalPack.DLF
VIPRETrojan.Win32.Generic!BT
K7AntiVirusTrojan ( 005497181 )
BitDefenderTrojan.Delf.FareIt.Gen.1
K7GWTrojan ( 005497181 )
Cybereasonmalicious.cd0f1a
TrendMicroTrojanSpy.Win32.LOKI.SMDD.hp
BitDefenderThetaGen:Trojan.Heur2.LPTZGW@bavN02gib
CyrenW32/Trojan.CMN.gen!Eldorado
SymantecTrojan.Gen.MBT
APEXMalicious
AvastWin32:Malware-gen
GDataTrojan.Delf.FareIt.Gen.1
KasperskyHEUR:Trojan.Win32.Kryptik.gen
AlibabaTrojan:Win32/Injector.c1b1de29
NANO-AntivirusTrojan.Win32.Kryptik.fnuyjj
ViRobotTrojan.Win32.Z.Injector.837120.L
RisingTrojan.Injector!1.AFE3 (CLASSIC)
Ad-AwareTrojan.Delf.FareIt.Gen.1
ComodoMalware@#123nlxwhf4wnm
F-SecureTrojan.TR/Injector.kqumc
DrWebTrojan.Siggen8.13820
ZillyaTrojan.Kryptik.Win32.1602792
Invinceaheuristic
McAfee-GW-EditionBehavesLike.Win32.Fareit.cc
EmsisoftTrojan.Delf.FareIt.Gen.1 (B)
F-ProtW32/Trojan.CMN.gen!Eldorado
WebrootW32.Trojan.Gen
AviraTR/Injector.kqumc
Endgamemalicious (high confidence)
ArcabitTrojan.Delf.FareIt.Gen.1
ZoneAlarmHEUR:Trojan.Win32.Kryptik.gen
MicrosoftVirTool:Win32/CeeInject.APX!bit
AhnLab-V3Win-Trojan/Delphiless02.Exp
Acronissuspicious
McAfeeFareit-FOF!598F9C4CD0F1
VBA32TrojanPSW.Stealer
PandaTrj/Genetic.gen
ESET-NOD32a variant of Win32/Injector.EECI
TrendMicro-HouseCallTrojanSpy.Win32.LOKI.SMDD.hp
YandexTrojan.Kryptik!GmNg+lIvb2o
MAXmalware (ai score=100)
FortinetW32/Injector.DVFA!tr
AVGWin32:Malware-gen
Paloaltogeneric.ml
CrowdStrikewin/malicious_confidence_100% (W)
Qihoo-360Win32/Trojan.469

How to remove VirTool:Win32/CeeInject.APX!bit?

VirTool:Win32/CeeInject.APX!bit removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment