Malware

Win32/Injector.ERAO removal

Malware Removal

The Win32/Injector.ERAO is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Win32/Injector.ERAO virus can do?

  • At least one process apparently crashed during execution
  • Dynamic (imported) function loading detected
  • Reads data out of its own binary image
  • Authenticode signature is invalid

How to determine Win32/Injector.ERAO?



File Info:

name: D22F218C357A2B9B4AFE.mlw
path: /opt/CAPEv2/storage/binaries/23abc05ec0a16b74170a526533b06ef92f28d7204662d49fba1cfd31e1cd102f
crc32: ABD3878B
md5: d22f218c357a2b9b4afe29ea0ab260f7
sha1: 949233a8cf8af3c528779d3a861c4ff01d6f2ddf
sha256: 23abc05ec0a16b74170a526533b06ef92f28d7204662d49fba1cfd31e1cd102f
sha512: dd5b3e9193e9e7feef1892aa4d56034c0337374a3c2eeb0eb6da503f9155c8e0442e9373f1d33072b1d15e107b29ee99427da54cc24aa52710eaf59cde9f2fa8
ssdeep: 6144:owS4gZuB5m2Sx4jUEDh2I0RkGLSrlodi5whaO:sZuq1mUQh2Ib5o6wh7
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1DD44125354C0DCEBC00219351AB65FBDC7FBA60A3B12CA0717551EFF9E21091BB9A27A
sha3_384: 1849953be07dff588449ed13545a9419539b83b13615dcb1d7b27637fa1701e76e5fbf188a4c67888a10605f8dcd21cc
ep_bytes: 81ec8001000053555633db57895c2418
timestamp: 2008-10-10 21:48:57


Version Info:

0: [No Data]

Win32/Injector.ERAO also known as:

MicroWorld-eScanTrojan.Risis.1.Gen
FireEyeTrojan.Risis.1.Gen
BitDefenderTrojan.Risis.1.Gen
Cybereasonmalicious.c357a2
BitDefenderThetaGen:NN.ZedlaF.34182.bu4@auoT8Zdi
CyrenW32/Injector.ATX.gen!Eldorado
SymantecPacked.Generic.606
ESET-NOD32a variant of Win32/Injector.ERAO
KasperskyUDS:DangerousObject.Multi.Generic
EmsisoftTrojan.Risis.1.Gen (B)
SentinelOneStatic AI – Suspicious PE
APEXMalicious
GDataZum.Androm.1
MAXmalware (ai score=84)
ArcabitTrojan.Risis.1.Gen
SUPERAntiSpywareTrojan.Agent/Gen-AdInst
MicrosoftTrojan:Win32/Sabsik.FL.B!ml
CynetMalicious (score: 100)
AhnLab-V3Trojan/Win.ObfusInjector.R467391
MalwarebytesTrojan.Injector.DL.Generic
IkarusTrojan.NSIS.Agent
FortinetW32/Injector.ERAJ!tr
AVGWin32:PWSX-gen [Trj]
AvastWin32:PWSX-gen [Trj]

How to remove Win32/Injector.ERAO?

Win32/Injector.ERAO removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment