Malware

Should I remove “Win32/GenKryptik.FZAN”?

Malware Removal

The Win32/GenKryptik.FZAN is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Win32/GenKryptik.FZAN virus can do?

  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • CAPE detected the RedLine malware family

How to determine Win32/GenKryptik.FZAN?



File Info:

name: 29CFED27A71E108F7502.mlw
path: /opt/CAPEv2/storage/binaries/bdc6e7b6b40168c91cc0484b1405d8e280c61d9de2409c62b398a64523481793
crc32: 83BFA00D
md5: 29cfed27a71e108f75020ee063c036ea
sha1: ca27da8d9dee28d8476d97628426bd210c2565d1
sha256: bdc6e7b6b40168c91cc0484b1405d8e280c61d9de2409c62b398a64523481793
sha512: 6ace7f4565aa3ef63839cdd95088372196f9954b99c81a1f4158b4217994776b7176ab1b60b88269c15c83470bc76abde49765c266eaadca7865691e48f8c0fb
ssdeep: 12288:ia1XVxwL1YZWnv4ygo63VSEv8dguck1dIddQmDavau3:51FxTygZMEv8djAnDavaq
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T13D948D12B5C08032D2B234350779D2F539EDA4A05A675ACF67DC497ABF20AC19B3972F
sha3_384: c9d144bafba63c8b0bc55d2da73ad2db4abdf6162475a47ce37c5695ad3d1bcb46b5dc0ea45e2a739405ca52ecf9c0fb
ep_bytes: e81a070000e917feffff558bec6a00ff
timestamp: 2022-08-18 20:45:26


Version Info:

0: [No Data]

Win32/GenKryptik.FZAN also known as:

BkavW32.AIDetect.malware2
Elasticmalicious (high confidence)
DrWebTrojan.PWS.Stealer.32832
MicroWorld-eScanGen:Variant.Zusy.435603
FireEyeGeneric.mg.29cfed27a71e108f
CylanceUnsafe
BitDefenderThetaGen:NN.ZexaF.34606.AqW@aW8VLog
ESET-NOD32a variant of Win32/GenKryptik.FZAN
APEXMalicious
BitDefenderGen:Variant.Zusy.435603
AvastWin32:PWSX-gen [Trj]
Ad-AwareGen:Variant.Zusy.435603
EmsisoftGen:Variant.Zusy.435603 (B)
VIPREGen:Variant.Zusy.435603
Trapminemalicious.moderate.ml.score
SentinelOneStatic AI – Suspicious PE
GDataGen:Variant.Zusy.435603
MAXmalware (ai score=88)
MicrosoftTrojan:Win32/Sabsik.FL.B!ml
CynetMalicious (score: 100)
AhnLab-V3Trojan/Win.Generic.C5142678
ALYacGen:Variant.Zusy.435603
RisingTrojan.Generic@AI.83 (RDML:SwvNOdAb1QECrgA3QhQNlg)
AVGWin32:PWSX-gen [Trj]

How to remove Win32/GenKryptik.FZAN?

Win32/GenKryptik.FZAN removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment