About “Win32/Kryptik.HBBF” infection

Malware Removal

The Win32/Kryptik.HBBF is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Review

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
6-day free trial available.

What Win32/Kryptik.HBBF virus can do?

  • Executable code extraction
  • Creates RWX memory
  • Unconventionial language used in binary resources: Gaelic (Scottish)
  • The binary likely contains encrypted or compressed data.
  • Attempts to modify proxy settings
  • Collects information to fingerprint the system
  • Anomalous binary characteristics

Related domains:

z.whorecord.xyz
eas1tlink.xyz
a.tomx.xyz

How to determine Win32/Kryptik.HBBF?


File Info:

crc32: 3388ADA6
md5: 8ea83ff3ad9a8a55ec3dc940a8ec0ab8
name: him.exe
sha1: 3e7d094775679917eb5921af0d421cb632e73b77
sha256: cd998687ac2114a4b001c604ba75ab48f4999b6b82534537b21a0a9947541659
sha512: a19aba00d9da23f87a9d38790386253ab970d806d45c8b7e18e9a3e40ff0f08c15e7e32b6f18a95c0b1991cab0b8f9f18421ddf811ed8a48052dc4fe3115b4b4
ssdeep: 3072:C9wpnmVFcFWcZs7AUQ3MnGFdJUEtULh97Awx6+dsl:s/VFcFWce7M8nGF0Qwb
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:

InternalServiceName: sfsgvsdg.exe
Copyright: Copyright (C) 2020, bobtail
FileVersionFull: 2.3.4

Win32/Kryptik.HBBF also known as:

McAfeeArtemis!8EA83FF3AD9A
SangforMalware
K7GWTrojan ( 0053d5971 )
K7AntiVirusTrojan ( 0053d5971 )
BitDefenderThetaGen:NN.ZexaF.34090.kuW@aOK1L9nG
ESET-NOD32a variant of Win32/Kryptik.HBBF
Paloaltogeneric.ml
ClamAVWin.Malware.Generic-7561022-0
KasperskyUDS:DangerousObject.Multi.Generic
APEXMalicious
RisingMalware.Heuristic!ET#98% (RDMK:cmRtazqae6f3JRjmsJ2tA1Z/bEdm)
Invinceaheuristic
McAfee-GW-EditionBehavesLike.Win32.Generic.cc
Trapminemalicious.high.ml.score
FireEyeGeneric.mg.8ea83ff3ad9a8a55
SentinelOneDFI – Suspicious PE
MaxSecureTrojan.Malware.300983.susgen
MicrosoftTrojan:Win32/Wacatac.D!ml
Endgamemalicious (high confidence)
ZoneAlarmUDS:DangerousObject.Multi.Generic
Acronissuspicious
eGambitUnsafe.AI_Score_93%
FortinetMalicious_Behavior.SB
Cybereasonmalicious.3ad9a8
CrowdStrikewin/malicious_confidence_100% (W)
Qihoo-360HEUR/QVM10.1.3429.Malware.Gen

How to remove Win32/Kryptik.HBBF?

Win32/Kryptik.HBBF removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

Leave a Comment