Malware

Win32/Kryptik.GJFG removal tips

Malware Removal

The Win32/Kryptik.GJFG is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Win32/Kryptik.GJFG virus can do?

  • Executable code extraction
  • Presents an Authenticode digital signature
  • Creates RWX memory
  • A process created a hidden window
  • Uses Windows utilities for basic functionality
  • Installs itself for autorun at Windows startup
  • Attempts to identify installed AV products by registry key
  • Anomalous binary characteristics

How to determine Win32/Kryptik.GJFG?



File Info:

crc32: CE4A2557
md5: 714233f549613b5c25572eebd07e41bb
name: 714233F549613B5C25572EEBD07E41BB.mlw
sha1: 59ce8dae635a9d6a4d0244fd2442cf8cc0f93f50
sha256: 4219803feb9be670c529917758ef8b31b09bffa617a8aa28603cee9b5f567864
sha512: 079db9920b92b944105ecf66e071ee90b804bb59e34e12f3fac3b32fc8e4c03ac24b76009430c7280d37141c7e3596a5aecc1e3c5cb419e5fef1fb1b900b5500
ssdeep: 6144:rtgxh3lN8iXN8iXN8iXN8iXN8iXN8iXN84KpKv:rtU13X3X3X3X3X3XfKpKv
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright: (
InternalName: ipdate Mediator
ate Mediator: 0x06x01ProductVersion
FileVersion: 2.0.0.0
CompanyName: Ashampoo
.0: D
FileDescription: ipdate Mediator
galTrademarks2: Nx13x01OriginalFilename
galTrademarks1: (
ateMediator.exe: @x10x01ProductName
Translation: 0x0409 0x04b0

Win32/Kryptik.GJFG also known as:

BkavW32.AIDetect.malware1
K7AntiVirusTrojan ( 005416a11 )
Elasticmalicious (high confidence)
DrWebTrojan.Siggen7.62627
CynetMalicious (score: 99)
CAT-QuickHealTrojan.Mauvaise.SL1
ALYacGen:Heur.Mint.Jamg.1
CylanceUnsafe
ZillyaTrojan.NetStream.Win32.110
SangforTrojan.Win32.Save.a
CrowdStrikewin/malicious_confidence_100% (D)
AlibabaTrojan:Win32/Bunitu.ali1000105
K7GWTrojan ( 005416a11 )
Cybereasonmalicious.549613
CyrenW32/Trojan.BUF.gen!Eldorado
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/Kryptik.GJFG
APEXMalicious
AvastWin32:DangerousSig [Trj]
ClamAVWin.Dropper.Bunitu-9871406-0
KasperskyTrojan.Win32.NetStream.bgk
BitDefenderGen:Heur.Mint.Jamg.1
NANO-AntivirusTrojan.Win32.Kryptik.fkrgos
MicroWorld-eScanGen:Heur.Mint.Jamg.1
TencentMalware.Win32.Gencirc.116d80a7
Ad-AwareGen:Heur.Mint.Jamg.1
SophosMal/Generic-S + Mal/Cerber-AM
ComodoTrojWare.Win32.TrojanProxy.Bunitu.FG@7zez5j
BitDefenderThetaGen:NN.ZexaF.34770.uq1@aGHlOkpi
VIPRETrojan.Win32.Generic!BT
TrendMicroRansom.Win32.SHADE.SMB.hp
McAfee-GW-EditionTrickbot-FRDP!714233F54961
FireEyeGeneric.mg.714233f549613b5c
EmsisoftGen:Heur.Mint.Jamg.1 (B)
AviraHEUR/AGEN.1125189
eGambitUnsafe.AI_Score_95%
Antiy-AVLTrojan/Generic.ASMalwS.29B999A
MicrosoftTrojan:Win32/GandCrab.KDV!MTB
AegisLabTrojan.Win32.NetStream.4!c
GDataGen:Heur.Mint.Jamg.1
AhnLab-V3Trojan/Win32.Bunitu.R246757
Acronissuspicious
McAfeeTrickbot-FRDP!714233F54961
MAXmalware (ai score=100)
VBA32BScope.Trojan.NetStream
MalwarebytesMalware.AI.1957721859
PandaTrj/GdSda.A
TrendMicro-HouseCallRansom.Win32.SHADE.SMB.hp
RisingTrojan.Generic@ML.87 (RDML:kxMGfytILmj8y9M4TUh36A)
YandexTrojan.GenAsa!9PQKHE3JPSg
IkarusTrojan.Win32.Crypt
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/Kryptik.GLWT!tr
AVGWin32:DangerousSig [Trj]
Paloaltogeneric.ml
Qihoo-360Win32/Ransom.GandCrab.HwoCEpsA

How to remove Win32/Kryptik.GJFG?

Win32/Kryptik.GJFG removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment