Malware

About “Win32/Kryptik.FBEK” infection

Malware Removal

The Win32/Kryptik.FBEK is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Win32/Kryptik.FBEK virus can do?

  • Injection (inter-process)
  • Injection (Process Hollowing)
  • Creates RWX memory
  • Possible date expiration check, exits too soon after checking local time
  • Reads data out of its own binary image
  • The binary likely contains encrypted or compressed data.
  • Executed a process and injected code into it, probably while unpacking
  • Anomalous binary characteristics

How to determine Win32/Kryptik.FBEK?



File Info:

crc32: FC0372FD
md5: 7769b61cdf9f3fa56b97327b96039e67
name: 7769B61CDF9F3FA56B97327B96039E67.mlw
sha1: 270d7845fc8b2105f5c14a8d771ec89ef5d2e74a
sha256: 8e5df7cca812bead85ae0c4b21a8b23e08d562d8af679068fbac3dd803b878b1
sha512: e19f12470f71972f5d5c2be477c7f80565b0511554f09ee163a16d673bc98dfdc646d10c7ff9f7e2ef27b10d237fc2f7b5a30661f56c8803e8d24cb224c05231
ssdeep: 3072:/XqSlxPvJnkXX7x1PSOcXdkGrYe4dKdBW36yDFPxKqUqrtcrQquoQAo5KnOUp:SMZvJI/dcXHD4MBWF/UqxiBVZoud
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright: (c) Angus Johnson 1999-2002
InternalName: ResHack
FileVersion: 3.4.0.79
CompanyName: 
LegalTrademarks: 
Comments: Freeware, but see help file for conditions.
ProductName: 
ProductVersion: 3.0.0.0
FileDescription: Resource viewer
OriginalFilename: ResHack
Aditional Notes: Not for distribution without the authors permission
Translation: 0x0c09 0x04e4

Win32/Kryptik.FBEK also known as:

BkavW32.AIDetect.malware1
K7AntiVirusTrojan ( 004f32c81 )
Elasticmalicious (high confidence)
DrWebTrojan.PWS.Panda.7934
CynetMalicious (score: 100)
ALYacGen:Variant.Barys.54808
CylanceUnsafe
ZillyaTrojan.Foreign.Win32.57034
SangforTrojan.Win32.Save.a
CrowdStrikewin/malicious_confidence_100% (D)
AlibabaRansom:Win32/Foreign.77046d0f
K7GWTrojan ( 004f32c81 )
Cybereasonmalicious.cdf9f3
CyrenW32/S-f31cff62!Eldorado
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/Kryptik.FBEK
APEXMalicious
AvastWin32:Malware-gen
ClamAVWin.Dropper.Zeus-9809557-0
KasperskyTrojan-Ransom.Win32.Foreign.nvqe
BitDefenderGen:Variant.Barys.54808
NANO-AntivirusTrojan.Win32.Panda.evvrya
MicroWorld-eScanGen:Variant.Barys.54808
TencentWin32.Trojan.Foreign.Ahor
Ad-AwareGen:Variant.Barys.54808
SophosMal/Generic-R + Mal/Ransom-EE
BitDefenderThetaGen:NN.ZexaF.34678.ou1@aWucc9di
VIPRETrojan.Win32.Generic!BT
McAfee-GW-EditionGenericRXDZ-EC!7769B61CDF9F
FireEyeGeneric.mg.7769b61cdf9f3fa5
EmsisoftGen:Variant.Barys.54808 (B)
SentinelOneStatic AI – Malicious PE
JiangminTrojanSpy.Zbot.flci
AviraHEUR/AGEN.1112598
eGambitUnsafe.AI_Score_99%
KingsoftWin32.Troj.Generic_a.a.(kcloud)
MicrosoftPWS:Win32/Zbot
ArcabitTrojan.Barys.DD618
AegisLabTrojan.Win32.Foreign.j!c
GDataGen:Variant.Barys.54808
AhnLab-V3Malware/Win32.Generic.C2389612
McAfeeGenericRXDZ-EC!7769B61CDF9F
MAXmalware (ai score=97)
VBA32Trojan-Ransom.Foreign
MalwarebytesMalware.Heuristic.1008
PandaTrj/GdSda.A
RisingRansom.Foreign!8.292 (TFE:5:HclEGzkqDHU)
YandexTrojan.GenAsa!fLOMjvnsiCs
IkarusTrojan-Ransom.Foreign
FortinetW32/Kryptik.FCAB!tr
AVGWin32:Malware-gen
Paloaltogeneric.ml
Qihoo-360Win32/Trojan.Zbot.HwUBEpsA

How to remove Win32/Kryptik.FBEK?

Win32/Kryptik.FBEK removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment