Malware

Win32/Kryptik.FOJT (file analysis)

Malware Removal

The Win32/Kryptik.FOJT is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Win32/Kryptik.FOJT virus can do?

  • Executable code extraction
  • Creates RWX memory
  • At least one IP Address, Domain, or File Name was found in a crypto call
  • Steals private information from local Internet browsers
  • Installs itself for autorun at Windows startup
  • Anomalous binary characteristics

How to determine Win32/Kryptik.FOJT?



File Info:

crc32: C12A6C3F
md5: fcb6e96c42cfd9a3860340e028036e5f
name: FCB6E96C42CFD9A3860340E028036E5F.mlw
sha1: 0667661bab34b0cf81182978810f9278638cb97b
sha256: 7eae21855ee12b17f1861acc128aa6789f181d600b55b18989ba8227d061d33b
sha512: 03aacdf5e44f8e02cba1a463c8883222ad32e59c6de692ae3aaabeec65e3fb15433284c967e3b98bded1dfab48aaa106d5083114318e5ca301006571cb115b2a
ssdeep: 768:aHe0106ygSZaz106ixl106ygSZaXAAK3ON6chmOFoI:QezikaWlWikaXuajE
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

0: [No Data]

Win32/Kryptik.FOJT also known as:

BkavW32.Common.4FCA0C37
K7AntiVirusTrojan ( 005190011 )
Elasticmalicious (high confidence)
DrWebTrojan.Encoder.10103
CynetMalicious (score: 100)
CAT-QuickHealRansom.Exxroute.A3
ALYacTrojan.Ransom.Spora
CylanceUnsafe
ZillyaTrojan.Spora.Win32.397
SangforTrojan.Win32.Save.a
CrowdStrikewin/malicious_confidence_100% (D)
AlibabaRansom:Win32/Spora.65a524bf
K7GWTrojan ( 005190011 )
Cybereasonmalicious.c42cfd
BaiduWin32.Trojan.Kryptik.bjl
CyrenW32/S-083d96b5!Eldorado
SymantecPacked.Generic.493
ESET-NOD32a variant of Win32/Kryptik.FOJT
APEXMalicious
AvastWin32:Malware-gen
ClamAVWin.Trojan.Generic-6268148-0
KasperskyHEUR:Trojan.Win32.Generic
BitDefenderTrojan.Dalexis.Gen.1
NANO-AntivirusTrojan.Win32.Spora.elqcfb
ViRobotTrojan.Win32.Ransom.81920.G
SUPERAntiSpywareRansom.Cerber/Variant
MicroWorld-eScanTrojan.Dalexis.Gen.1
TencentMalware.Win32.Gencirc.10b64f64
Ad-AwareTrojan.Dalexis.Gen.1
SophosML/PE-A + Mal/Elenoocka-E
ComodoTrojWare.Win32.Crypt.CA@6ykcle
BitDefenderThetaGen:NN.ZexaF.34628.fqW@am0bwbdi
VIPRETrojan.Win32.Generic!BT
TrendMicroRansom_HPCERBER.SMONT4
McAfee-GW-EditionBehavesLike.Win32.Generic.mm
FireEyeGeneric.mg.fcb6e96c42cfd9a3
EmsisoftTrojan.Dalexis.Gen.1 (B)
SentinelOneStatic AI – Malicious PE
JiangminTrojan.Generic.dmbkv
WebrootTrojan.Dropper.Gen
AviraHEUR/AGEN.1105007
eGambitUnsafe.AI_Score_97%
KingsoftWin32.Troj.Undef.(kcloud)
MicrosoftRansom:Win32/Spora.A
ArcabitTrojan.Dalexis.Gen.1
AegisLabTrojan.Win32.Generic.4!c
GDataTrojan.Dalexis.Gen.1
TACHYONRansom/W32.Spora.81920.M
AhnLab-V3Trojan/Win32.Cerber.R195524
Acronissuspicious
McAfeeRansomware-FMJ!FCB6E96C42CF
MAXmalware (ai score=100)
VBA32Hoax.Spora
MalwarebytesRansom.Cerber
PandaTrj/CI.A
TrendMicro-HouseCallRansom_HPCERBER.SMONT4
RisingRansom.Spora!8.E3EE (KTSE)
YandexTrojan.GenAsa!E3+Ji4N7IuQ
IkarusTrojan.Ransom.Spora
FortinetW32/Kryptik.FOZG!tr
AVGWin32:Malware-gen
Qihoo-360Win32/TrojanDownloader.Cabby.HxQBANgC

How to remove Win32/Kryptik.FOJT?

Win32/Kryptik.FOJT removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment