Malware

Win32/Injector.DEDZ removal

Malware Removal

The Win32/Injector.DEDZ is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Win32/Injector.DEDZ virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • CAPE extracted potentially suspicious content
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine Win32/Injector.DEDZ?



File Info:

name: F7469298F40ACA8190C5.mlw
path: /opt/CAPEv2/storage/binaries/4534c2dd20361eee6685a1bbd367c0c86d48a48b06ee953169280cd9a5794e86
crc32: 413CBDEF
md5: f7469298f40aca8190c58a037a06447d
sha1: cdd5159af3acfb47b353b5033820108a6045c9dc
sha256: 4534c2dd20361eee6685a1bbd367c0c86d48a48b06ee953169280cd9a5794e86
sha512: eecf013e07d8aeba25deca52c197cba07bccff99de7ef306550bbd4c3a2bbad74dac19be107dd4c8ca01bb4fccc8ebfd1d980f5de2d26b80d1244417ee8190ec
ssdeep: 3072:1ialHOcD+xSKtXCNHPW3vX5jIbVfSNNhL9aiC1y3UREUM:17hzKt04tEVaZ5T3Lh
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T176443AE4E42AEE4BF322D4395425F678CED410A0E776D079B025FAD857B33902069B6F
sha3_384: c8d307a60fbaf0d6592be27425096f2215bf00b08e11e9ceb84eaf9fc03f91ac71787c33aa5e1b1f43c6c9a7722ac781
ep_bytes: 68e8864300e8f0ffffff000000000000
timestamp: 2016-08-30 22:37:00


Version Info:

Translation: 0x0409 0x04b0
CompanyName: OM ltd. 2016
FileDescription: Subvendee
LegalCopyright: Raen
ProductName: Springed
FileVersion: 1.00
ProductVersion: 1.00
InternalName: Gastnesses
OriginalFilename: Gastnesses.exe

Win32/Injector.DEDZ also known as:

LionicTrojan.Multi.Generic.4!c
AVGWin32:Evo-gen [Trj]
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Heur.PonyStealer.qm0@eaaWbOii
FireEyeGeneric.mg.f7469298f40aca81
McAfeeGeneric.asz
MalwarebytesGeneric.Malware/Suspicious
ZillyaTrojan.Injector.Win32.683932
SangforSuspicious.Win32.Save.vb
K7AntiVirusTrojan ( 0055e3e11 )
AlibabaTrojan:Win32/Injector.22f128b6
K7GWTrojan ( 0055e3e11 )
CrowdStrikewin/malicious_confidence_100% (W)
VirITTrojan.Win32.VBPack_Heur
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/Injector.DEDZ
CynetMalicious (score: 100)
APEXMalicious
Paloaltogeneric.ml
ClamAVWin.Packer.VbPack-0-6334882-0
KasperskyTrojan.Win32.VBKryjetor.csly
BitDefenderGen:Heur.PonyStealer.qm0@eaaWbOii
NANO-AntivirusTrojan.Win32.AD.ehgokz
AvastWin32:Evo-gen [Trj]
TencentWin32.Trojan.Vbkryjetor.Zmhl
SophosMal/FareitVB-G
F-SecureHeuristic.HEUR/AGEN.1338126
VIPREGen:Heur.PonyStealer.qm0@eaaWbOii
TrendMicroTROJ_KOVTER.SMFD
McAfee-GW-EditionBehavesLike.Win32.Trojan.dc
Trapminemalicious.high.ml.score
EmsisoftGen:Heur.PonyStealer.qm0@eaaWbOii (B)
SentinelOneStatic AI – Suspicious PE
GDataGen:Heur.PonyStealer.qm0@eaaWbOii
JiangminTrojan.VBKryjetor.abyt
WebrootW32.Yakes.Crzn
AviraHEUR/AGEN.1338126
MAXmalware (ai score=82)
Antiy-AVLTrojan/Win32.SGeneric
ArcabitTrojan.PonyStealer.E48DE5
ViRobotTrojan.Win32.Z.Agent.274432.SA
ZoneAlarmTrojan.Win32.VBKryjetor.csly
MicrosoftTrojan:Win32/Wacatac.B!ml
GoogleDetected
AhnLab-V3Win-Trojan/VBKrypt.RP.X1764
BitDefenderThetaGen:NN.ZevbaF.36132.qm0@aaaWbOii
ALYacGen:Heur.PonyStealer.qm0@eaaWbOii
VBA32Trojan.Dynamer
Cylanceunsafe
PandaTrj/GdSda.A
TrendMicro-HouseCallTROJ_KOVTER.SMFD
RisingTrojan.Injector!1.B459 (CLASSIC)
YandexTrojan.GenAsa!o5v/bdxNsug
IkarusTrojan.Win32.Injector
MaxSecureTrojan.Malware.1728101.susgen
FortinetW32/GuLoader.VHJB!tr
DeepInstinctMALICIOUS

How to remove Win32/Injector.DEDZ?

Win32/Injector.DEDZ removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment