Malware

Win32/Agent_AGen.BKZ removal guide

Malware Removal

The Win32/Agent_AGen.BKZ is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Win32/Agent_AGen.BKZ virus can do?

  • A file was accessed within the Public folder.
  • Unconventionial binary language: Chinese (Simplified)
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • Authenticode signature is invalid
  • Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine Win32/Agent_AGen.BKZ?



File Info:

name: 89C456B4A7A845D1F62F.mlw
path: /opt/CAPEv2/storage/binaries/d0f362a855593275ccf5fcdeb1284c67c6d98f106b4637f1398e2a43b0170469
crc32: E7E26807
md5: 89c456b4a7a845d1f62fc7e75ed04ae6
sha1: 7874c07a6a16a319bd71d129fe93e20c513d1ded
sha256: d0f362a855593275ccf5fcdeb1284c67c6d98f106b4637f1398e2a43b0170469
sha512: d716bd2625c129dc57610cd78a4688865baf8b95e7063877c3db5cdd60b3f3144a62b6731f9151cea172849700eec94c0a3c7e5ba797f13ff023bf7b8378fa95
ssdeep: 49152:6Hlk9Uv1NVUEz0pDoIsk0ziB5ImOda9HjAKhhsGX6mWWzkMQ4NmSOGevyS1z:0l68NVt0pDoIsNiBLOda9DfhhsGX6myN
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T174A58E217E91C0F7C6633D30A52A937AA77A9B305B3982F756E01E3C2E701D2953C65B
sha3_384: 4fba99b6ff1807cc24df973d165c42ba8eaa396a2493f4cdf7ea2147701a92ad6b0874cde8a917df605f844d61bfb282
ep_bytes: e80afb0000e989feffff8bff558bec83
timestamp: 2023-08-25 13:23:46


Version Info:

FileVersion: 6.6.6.6
FileDescription: 电音精灵v6.6 作者:启肯网络
ProductName: 电音精灵v6.6
ProductVersion: 6.6.6.6
CompanyName: 启肯科技
LegalCopyright: 启肯科技(www.qiken.cn)
Comments: 本程序使用易语言编写(http://www.eyuyan.com)
Translation: 0x0804 0x04b0

Win32/Agent_AGen.BKZ also known as:

BkavW32.AIDetectMalware
Elasticmalicious (high confidence)
ESET-NOD32a variant of Win32/Agent_AGen.BKZ
APEXMalicious
AvastFileRepMalware [Misc]
IkarusTrojan.Win32.Krypt
MicrosoftTrojan:Win32/Wacatac.B!ml
Cylanceunsafe
MaxSecureDropper.Dinwod.frindll
AVGFileRepMalware [Misc]

How to remove Win32/Agent_AGen.BKZ?

Win32/Agent_AGen.BKZ removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment