Malware

What is “VirTool:Win32/Ymacco.AA95”?

Malware Removal

The VirTool:Win32/Ymacco.AA95 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What VirTool:Win32/Ymacco.AA95 virus can do?

    How to determine VirTool:Win32/Ymacco.AA95?

    

    File Info:
    
crc32: B9CF9A19
    md5: 8c9db02d293d5aedf1b739e030050ba5
    name: 8C9DB02D293D5AEDF1B739E030050BA5.mlw
    sha1: 6deff7820e263e069fbe5f18d3f697c89f7672b1
    sha256: 959bf2e50cd93506aebc4009209b0e59a7b2c86c79741ef637161a90d4c5b4a9
    sha512: 4d0685e46611148a144fb42db188cf7c0c4eb8beeff20356fe00839e7b282a7490eacb2a733a846f8bee1e464fcb39012cbba48e7db410cf6a733b31ebb5fbc0
    ssdeep: 3072:Q/1f8UiG7vTD4lCXohPsoskbGehOTLMyNb+CR:Q/pJhrTDeCXFkvOTMU
    type: PE32 executable (console) Intel 80386 Mono/.Net assembly, for MS Windows
    

    Version Info:
    
Translation: 0x0000 0x04b0
    LegalCopyright: Copyright xa9  2017
    Assembly Version: 1.0.0.0
    InternalName: Video.exe
    FileVersion: 1.0.0.0
    ProductName: ConsoleApplication1
    ProductVersion: 1.0.0.0
    FileDescription: ConsoleApplication1
    OriginalFilename: Video.exe

    VirTool:Win32/Ymacco.AA95 also known as:

    K7AntiVirusTrojan ( 0050ea781 )
    Elasticmalicious (high confidence)
    DrWebTrojan.DownLoader22.58988
    CynetMalicious (score: 85)
    ALYacGen:Variant.Johnnie.8061
    CylanceUnsafe
    ZillyaTrojan.Blocker.Win32.38290
    SangforSuspicious.Win32.Johnnie.8061
    CrowdStrikewin/malicious_confidence_90% (W)
    AlibabaRansom:MSIL/Blocker.40c01514
    K7GWTrojan ( 0050ea781 )
    Cybereasonmalicious.d293d5
    SymantecTrojan.Gen.MBT
    ESET-NOD32a variant of MSIL/Kryptik.NPU
    APEXMalicious
    AvastWin32:Malware-gen
    KasperskyTrojan-Ransom.Win32.Blocker.kayw
    BitDefenderGen:Variant.Johnnie.8061
    NANO-AntivirusTrojan.Win32.Blocker.epojwj
    MicroWorld-eScanGen:Variant.Johnnie.8061
    TencentWin32.Trojan.Blocker.Edof
    Ad-AwareGen:Variant.Johnnie.8061
    SophosMal/Generic-S + Troj/MSIL-JYB
    ComodoMalware@#2veelkb5cy0sb
    BitDefenderThetaGen:NN.ZemsilF.34628.Br0@ae7AzZi
    VIPRETrojan.Win32.Generic!BT
    TrendMicroRansom_Blocker.R002C0DK220
    McAfee-GW-EditionArtemis!Trojan
    FireEyeGeneric.mg.8c9db02d293d5aed
    EmsisoftGen:Variant.Johnnie.8061 (B)
    SentinelOneStatic AI – Malicious PE
    AviraHEUR/AGEN.1126822
    MicrosoftVirTool:Win32/Ymacco.AA95
    ArcabitTrojan.Johnnie.D1F7D
    GDataGen:Variant.Johnnie.8061
    McAfeeArtemis!8C9DB02D293D
    MAXmalware (ai score=82)
    VBA32Hoax.Blocker
    MalwarebytesMalware.AI.2581188173
    PandaTrj/GdSda.A
    TrendMicro-HouseCallRansom_Blocker.R002C0DK220
    RisingRansom.Blocker!8.12A (CLOUD)
    YandexTrojan.Blocker!HM5sVLbMxeA
    IkarusTrojan.MSIL.Krypt
    FortinetMSIL/GenKryptik.AIAE!tr
    AVGWin32:Malware-gen
    Paloaltogeneric.ml
    Qihoo-360Win32/Ransom.Blocker.HgIASOoA

    How to remove VirTool:Win32/Ymacco.AA95?

    VirTool:Win32/Ymacco.AA95 removal tool
    • Download and install GridinSoft Anti-Malware.
    • Open GridinSoft Anti-Malware and perform a “Standard scan“.
    • Move to quarantine” all items.
    • Open “Tools” tab – Press “Reset Browser Settings“.
    • Select proper browser and options – Click “Reset”.
    • Restart your computer.

    You may also like

    About the author

    Paul Valéry

    I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

    View all posts

    Leave a Comment