Malware

Win32/Kryptik.HUYH (file analysis)

Malware Removal

The Win32/Kryptik.HUYH is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Win32/Kryptik.HUYH virus can do?

  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid
  • Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine Win32/Kryptik.HUYH?



File Info:

name: E93F521B1B77CEC468FE.mlw
path: /opt/CAPEv2/storage/binaries/9bccf258c2ac11d167814d9b229e720e5b3c8b36c2f654d592a5609e2a3a34fe
crc32: 26132162
md5: e93f521b1b77cec468fe8c804031126f
sha1: 83a7513a3725856f783cd94bb85b1106c622cef7
sha256: 9bccf258c2ac11d167814d9b229e720e5b3c8b36c2f654d592a5609e2a3a34fe
sha512: c5fb919cf8c54405b401158c33febd35072640919389a5e27b8e2ef8650792a88a24bdfd43ca451f573d7e688409bfc47bda02c8464f96f4efb1685a5630c8af
ssdeep: 12288:x6ygLhHXzHWdgAw/26p6LTNzTnMtGbSFFgpulNNj8Bus897tzzdvIzgB+ti:TShHjHWdgAw/26p6XytGbSaOcKtm2+
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T11A458EF2B48440B1DDE510B677DD772A421D98BC875907CF4FF826EED2986C1AA32782
sha3_384: 1778b7819dbff270a12a6b3eb049101060043d9841f89749c58ecca461bc4f2bbc67d0299b714caa0980681f00e4db57
ep_bytes: e9962a0400e942990500e90bb10400e9
timestamp: 2023-10-27 20:56:14


Version Info:

0: [No Data]

Win32/Kryptik.HUYH also known as:

BkavW32.AIDetectMalware
SkyhighBehavesLike.Win32.Generic.th
MalwarebytesTrojan.MalPack.RND
CrowdStrikewin/malicious_confidence_60% (D)
BitDefenderThetaGen:NN.ZexaF.36792.hDW@a4fEv2i
SymantecML.Attribute.HighConfidence
Elasticmalicious (high confidence)
ESET-NOD32a variant of Win32/Kryptik.HUYH
CynetMalicious (score: 100)
APEXMalicious
ClamAVWin.Packed.Pwsx-10012424-0
KasperskyHEUR:Trojan-PSW.Win32.Stealerc.gen
IkarusTrojan.Win32.Redline
VaristW32/Kryptik.KNN.gen!Eldorado
MicrosoftTrojan:Win32/Sabsik.FL.B!ml
ZoneAlarmHEUR:Trojan-PSW.Win32.Stealerc.gen
GoogleDetected
DeepInstinctMALICIOUS
PandaTrj/Genetic.gen
RisingTrojan.Kryptik!8.8 (TFE:5:cKZtqwrdDzE)
SentinelOneStatic AI – Suspicious PE
MaxSecureTrojan.Malware.121218.susgen
AVGTrojanX-gen [Trj]
AvastTrojanX-gen [Trj]

How to remove Win32/Kryptik.HUYH?

Win32/Kryptik.HUYH removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment