Malware

Win32/Kryptik.HQXS information

Malware Removal

The Win32/Kryptik.HQXS is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Win32/Kryptik.HQXS virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • CAPE extracted potentially suspicious content
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • Checks the presence of disk drives in the registry, possibly for anti-virtualization

How to determine Win32/Kryptik.HQXS?



File Info:

name: E1280197894E6266AB93.mlw
path: /opt/CAPEv2/storage/binaries/b11e2e3b7f16b17f4bf0f9fed794e994db8c1cd1403a0977283629db4db5b279
crc32: B9BEC5D6
md5: e1280197894e6266ab93cf5c09c2fb0a
sha1: 0f983dc7611ad375d718b6a7d836903d4d038517
sha256: b11e2e3b7f16b17f4bf0f9fed794e994db8c1cd1403a0977283629db4db5b279
sha512: 6a3208ccb9afa0a0c967a570eadbb1a46ab69791d0f938852c6e2e5e321fdb0ae3152205d54d361281f88e2cf18ddd73fd49c407d339792c61489f0612687d5b
ssdeep: 3072:gwyP45yLo7MHntH85PieyDXii5BayorY9rIHTtXBuPB39/Pkk4x:g48L3HtiiehkQEI56
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T11B14D0D036A0E43EC0725871B875D7A45A7A6C218165168B3B8A3F6F7F302D15FFE286
sha3_384: 016e450f5762fb6322bd55e7eb2a16e4515f50aa509f566d58a47e2667c7296b2938b50d408eef10ef53c083c7473da6
ep_bytes: e8ac360000e979feffff8bff558bec8b
timestamp: 2022-03-28 02:45:52


Version Info:

Translations: 0x0179 0x00aa

Win32/Kryptik.HQXS also known as:

BkavW32.AIDetect.malware2
LionicHeuristic.File.Generic.00×1!p
tehtrisGeneric.Malware
DrWebTrojan.DownLoader45.19606
MicroWorld-eScanTrojan.GenericKD.62284625
FireEyeGeneric.mg.e1280197894e6266
ALYacTrojan.GenericKD.62285900
CylanceUnsafe
SangforTrojan.Win32.Save.a
K7AntiVirusTrojan ( 00598a371 )
AlibabaTrojanDropper:Application/Obfuscated.e2b56e7c
CrowdStrikewin/malicious_confidence_100% (W)
CyrenW32/Kryptik.GNZ.gen!Eldorado
SymantecML.Attribute.HighConfidence
Elasticmalicious (high confidence)
ESET-NOD32a variant of Win32/Kryptik.HQXS
APEXMalicious
Paloaltogeneric.ml
ClamAVWin.Packed.Botx-9971431-0
KasperskyHEUR:Backdoor.Win32.Mokes.gen
BitDefenderTrojan.GenericKD.62284625
AvastWin32:TrojanX-gen [Trj]
TencentWin32.Backdoor.Mokes.Zolw
Ad-AwareTrojan.GenericKD.62284625
EmsisoftTrojan.GenericKD.62284625 (B)
ComodoMalware@#1ylwxvxe42pby
VIPRETrojan.GenericKD.62285900
TrendMicroTrojan.Win32.PRIVATELOADER.YXCIXZ
McAfee-GW-EditionBehavesLike.Win32.Emotet.ch
Trapminemalicious.high.ml.score
SophosMal/Generic-S
IkarusTrojan.Win32.Azorult
GDataWin32.Trojan.PSE.194S41V
WebrootW32.Trojan.Gen
GoogleDetected
AviraTR/AD.GenSHCode.hwvbh
Antiy-AVLTrojan/Generic.ASCommon.2BA
KingsoftWin32.Hack.Undef.(kcloud)
MicrosoftRansom:Win32/StopCrypt.SK!MTB
CynetMalicious (score: 100)
AhnLab-V3Packed/Win.GEE.R522241
McAfeePacked-GEE!E1280197894E
MAXmalware (ai score=99)
VBA32Malware-Cryptor.2LA.gen
MalwarebytesTrojan.MalPack.GS
TrendMicro-HouseCallTrojan.Win32.PRIVATELOADER.YXCIXZ
RisingTrojan.Generic@AI.100 (RDML:cAIO/MHju9s+7vok/5esIw)
SentinelOneStatic AI – Malicious PE
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/Kryptik.GTLW!tr
AVGWin32:TrojanX-gen [Trj]
Cybereasonmalicious.7611ad
PandaTrj/Genetic.gen

How to remove Win32/Kryptik.HQXS?

Win32/Kryptik.HQXS removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment