Win32/Injector.CVCK information

The Win32/Injector.CVCK is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Win32/Injector.CVCK virus can do?

Executable code extraction
Attempts to repeatedly call a single API many times in order to delay analysis time
Network activity detected but not expressed in API logs
Anomalous binary characteristics

Related domains:

z.whorecord.xyz

a.tomx.xyz

How to determine Win32/Injector.CVCK?


File Info:
crc32: E63981F5
md5: 1628e6f15842bb7b02182b252aae21c5
name: 1628E6F15842BB7B02182B252AAE21C5.mlw
sha1: 91dd7a0fcf25a4de2441bfdbb926c1ea39415b01
sha256: f93ad418745de59bbf18551dbcd7f7cc3409398bc0f8bcd9359c1dd1c5c844b0
sha512: 28e9b854da3e9fb3b31afb6ed127e61f8962929a23df41cb0ff8f0cbb0fb0ee652efcfef1624cc2d8ca198b7efb79e01a1c64075054ba1d12dfc46fac4d042d3
ssdeep: 6144:8MQZCz/+7mREJroCpbHmrSU8Ku7qThsddRC3WRbjJolzzECRe:8MQZCa7mREOAbHERKnfjJYzzECRe
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:
Translation: 0x0409 0x04b0
InternalName: Cartoon
FileVersion: 1.02.0002
CompanyName: Qpson
Comments: Goodinis
ProductName: Mammilliform
ProductVersion: 1.02.0002
FileDescription: Goodinis
OriginalFilename: Cartoon.exe

Win32/Injector.CVCK also known as:

Bkav	W32.AIDetectVM.malware1
Elastic	malicious (high confidence)
MicroWorld-eScan	Gen:Heur.PonyStealer.Gm0@e40TMqli
FireEye	Generic.mg.1628e6f15842bb7b
ALYac	Gen:Heur.PonyStealer.Gm0@e40TMqli
Cylance	Unsafe
VIPRE	Trojan.Win32.Generic!BT
AegisLab	Trojan.Win32.Zbot.l!c
Sangfor	Malware
K7AntiVirus	Trojan ( 004e13811 )
BitDefender	Gen:Heur.PonyStealer.Gm0@e40TMqli
K7GW	Trojan ( 004e13811 )
Cybereason	malicious.15842b
BitDefenderTheta	Gen:NN.ZevbaF.34804.Gm0@a40TMqli
Cyren	W32/VB.TPZU-6125
Symantec	ML.Attribute.HighConfidence
TrendMicro-HouseCall	TrojanSpy.Win32.LOKI.SM.hp
Avast	Win32:VBCrypt-DGH [Trj]
ClamAV	Win.Trojan.VBSinkDropper-6294288-0
Kaspersky	Trojan-Spy.Win32.Zbot.ybps
NANO-Antivirus	Trojan.Win32.Zbot.emnbva
Rising	Spyware.Zbot!8.16B (TFE:5:Fb3Muq9YfaJ)
Ad-Aware	Gen:Heur.PonyStealer.Gm0@e40TMqli
Emsisoft	Gen:Heur.PonyStealer.Gm0@e40TMqli (B)
Comodo	Malware@#27yc5omb2bsqz
F-Secure	Heuristic.HEUR/AGEN.1119908
Zillya	Trojan.Zbot.Win32.201284
TrendMicro	TrojanSpy.Win32.LOKI.SM.hp
McAfee-GW-Edition	BehavesLike.Win32.Fareit.hh
SentinelOne	Static AI – Malicious PE
Sophos	ML/PE-A + Mal/FareitVB-I
Ikarus	Trojan-Downloader.Win32.Adload
Jiangmin	TrojanSpy.Zbot.fjiu
Avira	HEUR/AGEN.1119908
Antiy-AVL	Trojan[Spy]/Win32.Zbot
Microsoft	Trojan:Win32/Skeeyah.A!rfn
Arcabit	Trojan.PonyStealer.EAD42A
SUPERAntiSpyware	Trojan.Agent/Gen-Injector
ZoneAlarm	Trojan-Spy.Win32.Zbot.ybps
GData	Gen:Heur.PonyStealer.Gm0@e40TMqli
Cynet	Malicious (score: 100)
AhnLab-V3	Win-Trojan/VBKrypt.RP.X1768
Acronis	suspicious
McAfee	Packed-JO!1628E6F15842
MAX	malware (ai score=100)
VBA32	TScope.Trojan.VB
Malwarebytes	Trojan.Ursnif
Panda	Trj/GdSda.A
APEX	Malicious
ESET-NOD32	a variant of Win32/Injector.CVCK
Tencent	Malware.Win32.Gencirc.114955b9
Yandex	TrojanSpy.Zbot!k9MgCQap4CA
eGambit	Unsafe.AI_Score_99%
Fortinet	W32/GenKryptik.XRX!tr
MaxSecure	Trojan.Malware.300983.susgen
AVG	Win32:VBCrypt-DGH [Trj]
Paloalto	generic.ml
CrowdStrike	win/malicious_confidence_100% (D)
Qihoo-360	HEUR/QVM03.0.0AA7.Malware.Gen

How to remove Win32/Injector.CVCK?

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

Win32/Injector.CVCK information