The Win32/Kryptik.GVMZ file is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.
What Win32/Kryptik.GVMZ virus can do?
- Injection (inter-process)
- Injection (Process Hollowing)
- Creates RWX memory
- Reads data out of its own binary image
- A process created a hidden window
- Executed a process and injected code into it, probably while unpacking
- Installs itself for autorun at Windows startup
- Creates a hidden or system file
- Creates a copy of itself
- Anomalous binary characteristics
How to determine Win32/Kryptik.GVMZ?
General:
Operating System: Windows 7 / 8 / 8.1 / 10 Virus Name: Trojan.GenericKD.32633121 (B)
File Info:
Name: sokge.exe
Size: 146432
Type: PE32 executable (GUI) Intel 80386, for MS Windows
MD5: 108ea07190490f1b30f6be2f212c2932
SHA1: f33c9de8bf35827bdc00d568064991449829f694
SH256: bc8740f5f6372fdd41dc920c8e4d9edbc7629dca04a755fc6e6ff07e7b154f45
Version Info:
[No Data]
Win32/Kryptik.GVMZ also known as:
ALYac | Trojan.Proxy.Sybici |
APEX | Malicious |
AVG | Win32:Trojan-gen |
Ad-Aware | Trojan.GenericKD.32633121 |
AegisLab | Trojan.Win32.Sybici.h!c |
AhnLab-V3 | Malware/Win32.Generic.C3545665 |
Alibaba | TrojanProxy:Win32/Sybici.a0b7e9dc |
Arcabit | Trojan.Generic.D1F1F121 |
Avast | Win32:Trojan-gen |
Avira | TR/AD.Coroxy.stlny |
BitDefender | Trojan.GenericKD.32633121 |
BitDefenderTheta | Gen:NN.ZexaF.32251.iC0@aGUyv2ci |
CAT-QuickHeal | Trojan.Fuery |
Comodo | Malware@#33bkfltu7sw1b |
CrowdStrike | win/malicious_confidence_100% (W) |
Cylance | Unsafe |
Cyren | W32/Trojan.ZMGZ-7871 |
DrWeb | Trojan.DownLoader30.29539 |
ESET-NOD32 | a variant of Win32/Kryptik.GVMZ |
Emsisoft | Trojan.GenericKD.32633121 (B) |
F-Secure | Trojan.TR/AD.Coroxy.stlny |
FireEye | Trojan.GenericKD.32633121 |
Fortinet | W32/Kryptik.GVMZ!tr |
GData | Trojan.GenericKD.32633121 |
Ikarus | Trojan.Win32.Crypt |
Jiangmin | TrojanProxy.Sybici.t |
K7AntiVirus | Riskware ( 0040eff71 ) |
K7GW | Riskware ( 0040eff71 ) |
Kaspersky | Trojan-Proxy.Win32.Sybici.ft |
MAX | malware (ai score=85) |
Malwarebytes | Trojan.Downloader |
McAfee | RDN/Generic.dx |
McAfee-GW-Edition | RDN/Generic.dx |
MicroWorld-eScan | Trojan.GenericKD.32633121 |
Microsoft | Trojan:Win32/Skeeyah.A!MTB |
NANO-Antivirus | Trojan.Win32.Sybici.geokgu |
Paloalto | generic.ml |
Panda | Generic Malware |
Qihoo-360 | Win32/Trojan.Proxy.637 |
Rising | Trojan.Generic@ML.96 (RDMK:6WxK8MuzfgrbmhixfbG4ig) |
Sophos | Mal/Generic-S |
Symantec | Trojan.Gen.MBT |
TrendMicro | TROJ_GEN.R002C0WJP19 |
TrendMicro-HouseCall | TROJ_GEN.R002C0WJP19 |
VBA32 | TScope.Malware-Cryptor.SB |
VIPRE | Trojan.Win32.Generic!BT |
Webroot | W32.Trojan.Gen |
Yandex | Trojan.PR.Sybici! |
Zillya | Trojan.Kryptik.Win32.1800047 |
ZoneAlarm | Trojan-Proxy.Win32.Sybici.ft |
How to remove Win32/Kryptik.GVMZ?
- Download and install GridinSoft Anti-Malware.
- Open GridinSoft Anti-Malware and perform a “Standard scan“.
- “Move to quarantine” all items.
- Open “Tools” tab – Press “Reset Browser Settings“.
- Select proper browser and options – Click “Reset”.
- Restart your computer.
Leave a Comment