Malware

Should I remove “Win32/Kryptik.BDKP”?

Malware Removal

The Win32/Kryptik.BDKP is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware - Review 2020

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
6-day free trial available.

What Win32/Kryptik.BDKP virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • Reads data out of its own binary image
  • CAPE extracted potentially suspicious content
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • Anomalous binary characteristics

How to determine Win32/Kryptik.BDKP?


File Info:

name: 66FC86FC848D608938A4.mlw
path: /opt/CAPEv2/storage/binaries/32aee96c4dee70e122b35d07139719f4d3e62598b47288642799f5094b14a5b4
crc32: 6F8069E9
md5: 66fc86fc848d608938a425ec0604e60a
sha1: 0b94fb664b6c58d1502eb42a4e2dfc14fdff6da8
sha256: 32aee96c4dee70e122b35d07139719f4d3e62598b47288642799f5094b14a5b4
sha512: 97ea2eb0fcec1b6fe652f1154071d959868420178401fd935f4a0cd0c86410108535b2f379dcd2b42b293cac5850173513944ea3240cc5dbf6cac1ef8d9234f1
ssdeep: 1536:XrbCgZndMezWa7wvC55uHlPFRZ4U9Im+f8Z8:bbCghdMezNMvC7uHldRmwMP
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T15353F1D463E924EEF8F51DB3252AE5383B72B756C24E052A4596782F653036306FAF0C
sha3_384: 33e871b2d8cbc34bf7856eb5fda21b26b9d01384f59bfd0949b2e85366a106c1c3221e2468b6a291bf1513d0720242e6
ep_bytes: eb060b0c0d0e0f0090909085c0740a75
timestamp: 2013-06-12 14:28:24

Version Info:

0: [No Data]

Win32/Kryptik.BDKP also known as:

BkavW32.AIDetect.malware2
DrWebTrojan.Winlock.8128
MicroWorld-eScanGen:Heur.VIZ.9
CAT-QuickHealFraudTool.Security
McAfeeRansom-FCCI!66FC86FC848D
CylanceUnsafe
SangforSuspicious.Win32.Save.a
K7AntiVirusRansomware ( 0040f4da1 )
K7GWRansomware ( 0040f4da1 )
CrowdStrikewin/malicious_confidence_100% (W)
BitDefenderThetaAI:Packer.425876F01E
VirITTrojan.Win32.Generic.AVHG
CyrenW32/FakeAlert.ZN.gen!Eldorado
SymantecTrojan.Ransomlock.Q
Elasticmalicious (high confidence)
ESET-NOD32a variant of Win32/Kryptik.BDKP
APEXMalicious
TrendMicro-HouseCallTROJ_RANSOM.SMKN
ClamAVWin.Ransomware.Generickdz-9757989-0
KasperskyHEUR:Trojan.Win32.Generic
BitDefenderGen:Heur.VIZ.9
NANO-AntivirusTrojan.Win32.Fakealert.cqomqf
AvastWin32:FakeAV-FAS [Cryp]
TencentMalware.Win32.Gencirc.10b77017
Ad-AwareGen:Heur.VIZ.9
EmsisoftGen:Heur.VIZ.9 (B)
ComodoTrojWare.Win32.Winwebsec.D@51z9lk
VIPREGen:Heur.VIZ.9
TrendMicroTROJ_RANSOM.SMKN
McAfee-GW-EditionBehavesLike.Win32.Ransomware.qc
Trapminemalicious.high.ml.score
FireEyeGeneric.mg.66fc86fc848d6089
SophosML/PE-A + Troj/Agent-ACEZ
SentinelOneStatic AI – Malicious PE
GDataGen:Heur.VIZ.9
JiangminTrojan/Blocker.eoi
GoogleDetected
AviraTR/Urausy.6092815
MAXmalware (ai score=86)
Antiy-AVLTrojan/Generic.ASMalwS.60F
SUPERAntiSpywareTrojan.Agent/Gen-Malagent
MicrosoftRansom:Win32/Urausy.C
CynetMalicious (score: 100)
AhnLab-V3Trojan/Win32.Blocker.R80546
Acronissuspicious
VBA32BScope.Trojan.FakeAV.1713
ALYacGen:Heur.VIZ.9
MalwarebytesTrojan.FakeAlert.ED
RisingTrojan.Agent!1.6A2A (CLASSIC)
YandexTrojan.Kryptik!t3DqCI4IC4Q
IkarusTrojan.Win32.FakeAV
MaxSecureTrojan.Malware.7164915.susgen
FortinetW32/Ransom.BD!tr
AVGWin32:FakeAV-FAS [Cryp]
Cybereasonmalicious.c848d6
PandaTrj/Dtcontx.E

How to remove Win32/Kryptik.BDKP?

Win32/Kryptik.BDKP removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment