Malware

Should I remove “Win32/Injector.EAJZ”?

Malware Removal

The Win32/Injector.EAJZ is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware - Review 2020

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
6-day free trial available.

What Win32/Injector.EAJZ virus can do?

  • Executable code extraction
  • Creates RWX memory
  • Unconventionial language used in binary resources: Turkish
  • The binary likely contains encrypted or compressed data.
  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

How to determine Win32/Injector.EAJZ?


File Info:

crc32: 515886F1
md5: f2f2bab09fc54f5cda3858395f800898
name: F2F2BAB09FC54F5CDA3858395F800898.mlw
sha1: 8b058c49112afcd26ced5a16827f082df8e3fa4e
sha256: 9d8980c0c6a13da2423be5946696174aa97573f821fe4d4b3f1f823e52832b8e
sha512: 4fa02ddc709c55dfe32eee776cbff90b34396c0b3828fd54761a4d9aeee4b5678576432a04d04548e39c29ee2f4e72262eb2d59aad6feda920e95aed5a8fbc7b
ssdeep: 3072:dVYVdAKXCcLx2C+9jxzagdxptHp54U6ETXCKc:bYVdAincCsBLtJZpTXRc
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:

InternalName: sdafsdgsfdg.exe
FileVersion: 1.0.0.1
Translation: 0x0809 0x04b0

Win32/Injector.EAJZ also known as:

BkavW32.AIDetect.malware1
K7AntiVirusTrojan ( 0053d5971 )
Elasticmalicious (high confidence)
DrWebTrojan.Encoder.25976
CynetMalicious (score: 100)
ALYacTrojan.BRMon.Gen.4
MalwarebytesTrojan.MalPack.GS
ZillyaTrojan.Chapak.Win32.14165
SangforTrojan.Win32.Save.a
CrowdStrikewin/malicious_confidence_100% (D)
AlibabaRansom:Win32/Chapak.5bf0fc0a
K7GWTrojan ( 0053d5971 )
Cybereasonmalicious.09fc54
CyrenW32/Kryptik.IF.gen!Eldorado
SymantecPacked.Generic.525
ESET-NOD32a variant of Win32/Injector.EAJZ
APEXMalicious
AvastWin32:PWSX-gen [Trj]
KasperskyTrojan.Win32.Chapak.atnh
BitDefenderTrojan.BRMon.Gen.4
NANO-AntivirusTrojan.Win32.Chapak.fhshuc
SUPERAntiSpywareRansom.GandCrab/Variant
MicroWorld-eScanTrojan.BRMon.Gen.4
TencentWin32.Trojan.Chapak.Eeqs
Ad-AwareTrojan.BRMon.Gen.4
SophosMal/Generic-R + Mal/GandCrab-B
ComodoTrojWare.Win32.TrojanSpy.Ursnif.EM@7vyz23
BitDefenderThetaGen:NN.ZexaF.34690.ju0@a4GLSabG
TrendMicroTrojanSpy.Win32.URSNIF.SMKB.hp
McAfee-GW-EditionBehavesLike.Win32.Emotet.cc
FireEyeGeneric.mg.f2f2bab09fc54f5c
EmsisoftTrojan.BRMon.Gen.4 (B)
SentinelOneStatic AI – Malicious PE
JiangminTrojan.Chapak.uk
AviraHEUR/AGEN.1106537
eGambitUnsafe.AI_Score_99%
Antiy-AVLTrojan/Generic.ASMalwS.280B280
MicrosoftRansom:Win32/GandCrab.AQ
ArcabitTrojan.BRMon.Gen.4
AegisLabTrojan.Win32.Chapak.4!c
ZoneAlarmHEUR:Trojan.Win32.Generic
GDataWin32.Trojan-Ransom.GandCrab.O
AhnLab-V3Win-Trojan/MalPe34.Suspicious.X2029
Acronissuspicious
McAfeePacked-FLX!F2F2BAB09FC5
MAXmalware (ai score=100)
VBA32BScope.Trojan.Fuerboos
PandaTrj/Genetic.gen
TrendMicro-HouseCallTrojanSpy.Win32.URSNIF.SMKB.hp
RisingRansom.GandCrab!8.F355 (CLOUD)
YandexTrojan.GenAsa!tq3W4q+AZgc
IkarusTrojan.Crypt
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/Kryptik.GKSY!tr
AVGWin32:PWSX-gen [Trj]
Paloaltogeneric.ml

How to remove Win32/Injector.EAJZ?

Win32/Injector.EAJZ removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment