Win32/Kryptik.HNQU information

The Win32/Kryptik.HNQU is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Win32/Kryptik.HNQU virus can do?

At least one process apparently crashed during execution
Yara rule detections observed from a process memory dump/dropped files/CAPE
Presents an Authenticode digital signature
Authenticode signature is invalid
CAPE detected the Sakula malware family
Anomalous binary characteristics

How to determine Win32/Kryptik.HNQU?


File Info:
name: 98F6F6E8C3D973A26AC3.mlw
path: /opt/CAPEv2/storage/binaries/411dd9ac47e4cd0d5404c8ccc7fd8b1443156b43c29e2102757a4c84e259ee0d
crc32: D9B87DF8
md5: 98f6f6e8c3d973a26ac3382f7d1ea3a6
sha1: b35898b087eee836843b499bc55d97612c0a8cb6
sha256: 411dd9ac47e4cd0d5404c8ccc7fd8b1443156b43c29e2102757a4c84e259ee0d
sha512: ea1d2996d44b694429646b8c74402354120853e64d471e00a0216274e0c726843c9fe47d47062553e64c5b663586660f56828364eca481eb5c884b6c0ab17e7e
ssdeep: 49152:R9FLcpE0VDtGxEJIH3IgF7TQHHHHnkYPajJhiTWeOaIr7TsP68cRCTrOyEzwVX1T:F0E0ltGxSSbFHCSJU8gl06T
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T16A66AF5EF12004B0E477F1BA268D132AEB75F8402715A7CF1368A6D76F136E06A3D396
sha3_384: 38afb44aeed61aa104109905139eb3700750db9603bade8f45a6728df1e12a7ff6843b3e3fc2f15c0fa0272687148449
ep_bytes: 09f8ff1567fb6900e96f130000cca120
timestamp: 2021-12-11 02:34:16

Version Info:
FileVersion: 7, 3, 9, 1
CompanyName: Darklings
InternalName: Cajolement
Articular: Unforgiver
Improving: Arriswise
Unaghast: Colla
Periodontoclasia: Ontogenal
Unfeignedly: Counterimpulse
Serpentinize: Palamitism
Nubilum: Cnidarian
Oinomania: Ansel
Repercussion: Regardance
Samaritanism: Thumbscrew
Quoter: Fruitling
Chunner: Refulgent
Beshake: Unmisled
Albuminose: Tetrarchic
Retroserrulate: Pseudomorula
Daniglacial: Hassock
Irreflection: Thiobismuthite
Classically: Postclavicula
Pridian: Dewlapped
Unrehearsable: Nonius
Jeewhillikens: Hemachate
Abradant: Dynamitic
Teleplasm: Friendliwise
Monorail: Vagaristic
Ophicalcite: Entombment
Unknightlike: Pelmet
Leucocholy: Spotteldy
Grating: Bacteriologically
Heterocaseose: Kaliophilite
Abominably: Abthainry
Educative: Pachydermial
Ferrogoslarite: Protectorless
Sporophoric: Incomprehensibility
Zoons: Untopographical
Talayot: Neoblastic
Immethodically: Unicameralism
Balanoposthitis: Unshriven
Silker: Unreturnable
Readd: Pusslike
Megalography: Verticillium
Balneological: Overharshly
Hyoscyamine: Slaglessness
Tamandua: Scumlike
Glazed: Sortilege
Petropharyngeal: Recure
Vulneration: Consectary
Arytenoidal: Paranucleus
Excogitator: Abominably
Cumuli: Maithili
Rapping: Auditorship
Anfractuose: Semilune
Delectableness: Ratiocinatory
Fluviatile: Automatize
Belated: Pedaler
Alleviatory: Titanofluoride
Carapine: Prankish
Unblemishing: Carene
Beaminess: Callosal
Deconsideration: Dingleberry
Gonochorismus: Overlordship
PrivateBuild: Digonous
Translation: 0x0409 0x04e4

Win32/Kryptik.HNQU also known as:

Lionic	Trojan.Win32.Razy.4!c
Elastic	malicious (high confidence)
DrWeb	Trojan.Siggen16.4130
MicroWorld-eScan	Gen:Variant.Razy.670296
ALYac	Gen:Variant.Razy.670296
Cylance	Unsafe
K7AntiVirus	Trojan ( 0058bb951 )
Alibaba	Trojan:Win32/SelfDel.8a3a7fa6
K7GW	Trojan ( 0058bb951 )
Cybereason	malicious.8c3d97
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win32/Kryptik.HNQU
APEX	Malicious
Paloalto	generic.ml
Kaspersky	Trojan.Win32.SelfDel.hwac
BitDefender	Gen:Variant.Razy.670296
Avast	Win32:TrojanX-gen [Trj]
Tencent	Win32.Trojan.Selfdel.Hxgg
Ad-Aware	Gen:Variant.Razy.670296
Emsisoft	Gen:Variant.Razy.670296 (B)
VIPRE	Trojan.Compcert.101713 (fs)
TrendMicro	TROJ_GEN.R002C0RLB21
McAfee-GW-Edition	Artemis!Trojan
FireEye	Generic.mg.98f6f6e8c3d973a2
Sophos	Mal/EncPk-MP
Ikarus	Trojan.SuspectCRC
GData	Gen:Variant.Razy.670296
Webroot	W32.Malware.Gen
Gridinsoft	Ransom.Win32.Sabsik.sa
Arcabit	Trojan.Razy.DA3A58
ViRobot	Trojan.Win32.Z.Razy.6887632
Microsoft	Trojan:Win32/Wacatac.B!ml
Cynet	Malicious (score: 100)
AhnLab-V3	Trojan/Win.Agent.C4837579
Acronis	suspicious
McAfee	Artemis!98F6F6E8C3D9
MAX	malware (ai score=88)
VBA32	BScope.Trojan.Sabsik.FL
Malwarebytes	Trojan.Dropper
TrendMicro-HouseCall	TROJ_GEN.R002C0RLB21
Rising	Trojan.Generic@ML.85 (RDMK:pqdlL5VasZszFNQ2hRsmvw)
eGambit	PE.Heur.InvalidSig
Fortinet	W32/PossibleThreat
AVG	Win32:TrojanX-gen [Trj]
Panda	Generic Suspicious
CrowdStrike	win/malicious_confidence_60% (W)

How to remove Win32/Kryptik.HNQU?

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

Win32/Kryptik.HNQU information

Gridinsoft Anti-Malware

How to determine Win32/Kryptik.HNQU?

File Info:

Version Info:

Win32/Kryptik.HNQU also known as:

How to remove Win32/Kryptik.HNQU?

About the author

Paul Valéry

Leave a Comment X

Gridinsoft Anti-Malware

How to determine Win32/Kryptik.HNQU?

File Info:

Version Info:

Win32/Kryptik.HNQU also known as:

How to remove Win32/Kryptik.HNQU?

You may also like

About the author

Paul Valéry

Leave a Comment X