Categories: Malware

About “Win32/Injector.Autoit.EMA” infection

The Win32/Injector.Autoit.EMA file is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

What Win32/Injector.Autoit.EMA virus can do?

  • Reads data out of its own binary image
  • Anomalous binary characteristics

How to determine Win32/Injector.Autoit.EMA?



General:

Operating System: Windows 7 / 8 / 8.1 / 10
Virus Name: Trj/CI.A



File Info:


Name: px.exe
Size: 1124352
Type: PE32 executable (GUI) Intel 80386, for MS Windows
MD5: 062320679a253df4d37961a6ce5b9870
SHA1: 5e3d73c7d48d1b85deb28f1120e76a3a8fb683ae
SH256: ddc1ca6b9cabf78dd490c8ac27ba16fdbf70dc481443e08d63c3a2edcbf6ad36
 
Version Info:
 [No Data]

Win32/Injector.Autoit.EMA also known as:

ALYac Trojan.Agent.Wacatac
AVG Win32:Trojan-gen
Ad-Aware Trojan.GenericKD.41960013
AegisLab Trojan.Win32.Malicious.4!c
AhnLab-V3 Win-Trojan/Autoinj03.Exp
Alibaba Trojan:MSIL/Crypt.a46ed1bf
Antiy-AVL Trojan/Generic.ASVCS3S.1E5
Arcabit Trojan.Generic.D280424D
Avast Win32:Trojan-gen
Avira HEUR/AGEN.1044318
BitDefender Trojan.GenericKD.41960013
BitDefenderTheta Gen:NN.ZexaCO3.32250.evW@aSR7emki
CAT-QuickHeal Trojan.Wacatac
CrowdStrike win/malicious_confidence_80% (W)
Cybereason malicious.7d48d1
Cylance Unsafe
Cyren W32/Trojan.ZWHF-2945
DrWeb Trojan.DownLoader30.31038
ESET-NOD32 a variant of Win32/Injector.Autoit.EMA
Emsisoft Trojan.GenericKD.41960013 (B)
Endgame malicious (high confidence)
F-Secure Heuristic.HEUR/AGEN.1044318
FireEye Generic.mg.062320679a253df4
Fortinet AutoIt/Injector.EME!tr
GData Trojan.GenericKD.41960013
Invincea heuristic
K7AntiVirus Riskware ( 0040eff71 )
K7GW Riskware ( 0040eff71 )
Kaspersky Trojan.MSIL.Crypt.hitp
MAX malware (ai score=82)
Malwarebytes Trojan.MalPack.AutoIt
MaxSecure Trojan.Malware.1728101.susgen
McAfee Artemis!062320679A25
McAfee-GW-Edition BehavesLike.Win32.Downloader.th
MicroWorld-eScan Trojan.GenericKD.41960013
Microsoft Trojan:Win32/Tiggre!rfn
NANO-Antivirus Trojan.Script.Vbs-heuristic.druvzi
Paloalto generic.ml
Panda Trj/CI.A
Qihoo-360 Win32/Trojan.e9f
Rising Trojan.Obfus/Autoit!1.BD7E (CLASSIC)
SentinelOne DFI – Malicious PE
Sophos Mal/Generic-S
Symantec Packed.Generic.548
TrendMicro TROJ_GEN.R015C0PJT19
TrendMicro-HouseCall TROJ_GEN.R015C0PJT19
VIPRE Trojan.Win32.Generic!BT
ViRobot Trojan.Win32.Z.Wacatac.1124352
ZoneAlarm Trojan.MSIL.Crypt.hitp

How to remove Win32/Injector.Autoit.EMA?

  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.
Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment
Share
Published by
Paul Valéry
Tags: Win32/Injector.Autoit.EMA
4 years ago

Recent Posts

Malware.AI.1560801952 malicious file

The Malware.AI.1560801952 is considered dangerous by lots of security experts. When this infection is active,…

17 mins ago

Malware.AI.3778280684 removal tips

The Malware.AI.3778280684 is considered dangerous by lots of security experts. When this infection is active,…

22 mins ago

Should I remove “Jalapeno.777”?

The Jalapeno.777 is considered dangerous by lots of security experts. When this infection is active,…

22 mins ago

MSIL/Kryptik.ALMH (file analysis)

The MSIL/Kryptik.ALMH is considered dangerous by lots of security experts. When this infection is active,…

28 mins ago

Should I remove “Trojan.Win32.Agent.xbmkrx”?

The Trojan.Win32.Agent.xbmkrx is considered dangerous by lots of security experts. When this infection is active,…

53 mins ago

Tedy.179306 removal guide

The Tedy.179306 is considered dangerous by lots of security experts. When this infection is active,…

53 mins ago