Malware

What is “Win32/Kryptik.GJDP”?

Malware Removal

The Win32/Kryptik.GJDP is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Win32/Kryptik.GJDP virus can do?

  • Executable code extraction
  • Creates RWX memory
  • Unconventionial language used in binary resources: Estonian
  • The binary likely contains encrypted or compressed data.
  • Attempts to modify proxy settings
  • Collects information to fingerprint the system

Related domains:

kristinka.org

How to determine Win32/Kryptik.GJDP?



File Info:

crc32: BDDBABDB
md5: 80f2af23b62d92a64acb3c2d15691609
name: 80F2AF23B62D92A64ACB3C2D15691609.mlw
sha1: 3627aad61ac44b6ee743d66d14d31284ef0bb98f
sha256: 4ecfb959f16c062aa47cb6713ae06a7ffe43e24ffd4d6c17d8c669dff3dbddcb
sha512: 1a862d277fe864033ccbea5c0c1de29c91d4be4234d394b189ded9953d2091003e9ced55ec4a2e0f0973aa72569ae1b64b0e159486089bd1f2b4fec0368fbf50
ssdeep: 6144:Bj+6kvLLBxxxQMwnHzKi7Xcmp0/KKHbM:B66YvxBYzKi7Xck0r7M
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright: Copyright (C) 2017, josfibup
InternalName: tatira.exe
FileVersion: 3.7.9
ProductVersion: 3.7.9
Translation: 0x0809 0x04b0

Win32/Kryptik.GJDP also known as:

BkavW32.AIDetect.malware1
Elasticmalicious (high confidence)
MicroWorld-eScanTrojan.BRMon.Gen.4
FireEyeGeneric.mg.80f2af23b62d92a6
CAT-QuickHealTrojan.Chapak.ZZ6
ALYacTrojan.Ransom.GandCrab
CylanceUnsafe
SangforTrojan.Win32.Save.a
K7AntiVirusRiskware ( 0040eff71 )
BitDefenderTrojan.BRMon.Gen.4
K7GWRiskware ( 0040eff71 )
Cybereasonmalicious.3b62d9
CyrenW32/S-568c9372!Eldorado
SymantecPacked.Generic.525
APEXMalicious
AvastWin32:Malware-gen
ClamAVWin.Ransomware.Gandcrab-7101056-0
KasperskyHEUR:Trojan.Win32.Generic
AlibabaTrojan:Win32/Kryptik.5e5af433
NANO-AntivirusTrojan.Win32.Kryptik.fgsvny
ViRobotTrojan.Win32.GandCrab.328192
RisingTrojan.Vigorf!8.EAEA (CLOUD)
Ad-AwareTrojan.BRMon.Gen.4
EmsisoftTrojan.BRMon.Gen.4 (B)
ComodoTrojWare.Win32.Ransom.GandCrab.AQ@7rkz6l
F-SecureHeuristic.HEUR/AGEN.1102756
DrWebTrojan.Encoder.24384
ZillyaTrojan.GenericKD.Win32.124899
TrendMicroRansom_GANDCRAB.SMALY-3
McAfee-GW-EditionBehavesLike.Win32.Generic.fc
SophosMal/Generic-R + Mal/GandCrab-B
SentinelOneStatic AI – Malicious PE
JiangminTrojan.GandCrypt.hs
AviraHEUR/AGEN.1102756
eGambitUnsafe.AI_Score_96%
MAXmalware (ai score=80)
Antiy-AVLTrojan[Ransom]/Win32.GandCrypt
MicrosoftTrojan:Win32/Azorult!ml
ArcabitTrojan.BRMon.Gen.4
SUPERAntiSpywareTrojan.Agent/Gen-Kryptik
ZoneAlarmHEUR:Trojan.Win32.Generic
GDataTrojan.BRMon.Gen.4
CynetMalicious (score: 100)
AhnLab-V3Win-Trojan/Gandcrab04.Exp
Acronissuspicious
McAfeePacked-FJJ!80F2AF23B62D
VBA32BScope.TrojanDownloader.Upatre
MalwarebytesTrojan.MalPack
PandaTrj/GdSda.A
ESET-NOD32a variant of Win32/Kryptik.GJDP
TrendMicro-HouseCallRansom_GANDCRAB.SMALY-3
TencentWin32.Trojan.Generic.Ebgs
YandexTrojan.GandCrypt!VCzqWhUft+A
IkarusTrojan.Win32.Crypt
FortinetW32/Kryptik.GKJF!tr
BitDefenderThetaGen:NN.ZexaF.34590.uu0@aiRYnDcI
AVGWin32:Malware-gen
Paloaltogeneric.ml
CrowdStrikewin/malicious_confidence_90% (D)
Qihoo-360Win32/Trojan.Generic.HgIASOoA

How to remove Win32/Kryptik.GJDP?

Win32/Kryptik.GJDP removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment