Malware

Win32/Injector.EQJH (file analysis)

Malware Removal

The Win32/Injector.EQJH is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Win32/Injector.EQJH virus can do?

  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid

How to determine Win32/Injector.EQJH?



File Info:

name: 145C831786FAC8E82392.mlw
path: /opt/CAPEv2/storage/binaries/cce02b0c7c9fa5da0c036b9cab5a4949f29a5f56e0054cd14dab059f1eedf71d
crc32: F5A0E270
md5: 145c831786fac8e82392b547644092b3
sha1: bd1127147fd2a32d6dcbc9c212aac375831eef51
sha256: cce02b0c7c9fa5da0c036b9cab5a4949f29a5f56e0054cd14dab059f1eedf71d
sha512: 02b49eed6b48a0643927418d59df1b30dfb8445820fafc57ebf7bb421a78ba3c6c08f85736698f3480e14c287cf9029a9b55f8430fa2c4663d8085ff7d931037
ssdeep: 24576:76ksGB//gP0baGTkY//wz5WHs2Bn4trPa5AimsNS:76ksGB/0bf1Zw4tQt
type: PE32+ executable (GUI) x86-64, for MS Windows
tlsh: T101659E5BF7A348EDC67BC170469B8372BA70F81806306A2E2B55CF351F25EA0561EB74
sha3_384: e1f7459c33257af2604b299fc73525fd77829e8664779580149dd23d4fa52142ac2aef77d7b02b59f72f110d9c2b39f7
ep_bytes: 4883ec28488b0595421500c700010000
timestamp: 1970-01-01 00:00:00


Version Info:

0: [No Data]

Win32/Injector.EQJH also known as:

Elasticmalicious (high confidence)
MicroWorld-eScanTrojan.GenericKD.38118477
FireEyeGeneric.mg.145c831786fac8e8
ALYacTrojan.GenericKD.38118477
K7AntiVirusTrojan ( 005895d11 )
AlibabaVirTool:Win32/Sysdupate.c8c8b15f
Cybereasonmalicious.47fd2a
SymantecTrojan.Gen.MBT
ESET-NOD32a variant of Win32/Injector.EQJH
APEXMalicious
BitDefenderTrojan.GenericKD.38118477
AvastWin64:Evo-gen [Susp]
Ad-AwareTrojan.GenericKD.38118477
EmsisoftTrojan.GenericKD.38118477 (B)
McAfee-GW-EditionBehavesLike.Win64.Trickbot.tc
SophosMal/Generic-S
IkarusTrojan.Win64.Krypt
GDataTrojan.GenericKD.38118477
AviraTR/Injector.lqoza
MAXmalware (ai score=84)
MicrosoftVirTool:Win32/Sysdupate.gen!E
CynetMalicious (score: 100)
McAfeeArtemis!145C831786FA
MalwarebytesTrojan.ShellCode
TrendMicro-HouseCallTROJ_GEN.R002H01KP21
SentinelOneStatic AI – Suspicious PE
FortinetW32/EQJH!tr
AVGWin64:Evo-gen [Susp]
PandaTrj/CI.A

How to remove Win32/Injector.EQJH?

Win32/Injector.EQJH removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment