Win32:Krepper-D removal guide

The Win32:Krepper-D is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Win32:Krepper-D virus can do?

Sample contains Overlay data
The binary contains an unknown PE section name indicative of packing
The binary likely contains encrypted or compressed data.
The executable is compressed using UPX
Authenticode signature is invalid

How to determine Win32:Krepper-D?


File Info:
name: 53C6E0B88AAF86B4CD40.mlw
path: /opt/CAPEv2/storage/binaries/26a01143c4ccbfb409112552151f6ad249b50fc5e68fc5257a01a5e8aa9c3c68
crc32: 67281A87
md5: 53c6e0b88aaf86b4cd407b4f5a9c538c
sha1: 90f38f5f3626d7df8423d478deae1a4ba2478b19
sha256: 26a01143c4ccbfb409112552151f6ad249b50fc5e68fc5257a01a5e8aa9c3c68
sha512: 94d5937323fe1836de69af54fc80a72ca8e3349344d4351e0e86253c3adc7d5fe8db134f5f22ecb73044be613c776547cf03331feeb87b8480325c40c218542a
ssdeep: 1536:4cmjhDD3sPoudLwH/hUmxhyL11YuDEm1lSa47fMo6jaY3gbMwZA3gJqiI+vZDmh:4fN0LwH/hUmnWIuDxUa47fMo6T3hp3Q4
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T13C93CF2222E54826F0F71A7046BBA764233D7C525F35A2EF1A9076DF4D326D0D930F69
sha3_384: 5e65beda3f93c99a586b92bd6748922ad5fbaf298a38ae2f292c3e79647bbc93451fc63d6978b05e1b97a7c758f244c3
ep_bytes: 60e8000000005883e83d508db800b0fc
timestamp: 2003-09-28 00:37:23

Version Info:
0: [No Data]

Win32:Krepper-D also known as:

Bkav	W32.AIDetectMalware
Lionic	Virus.Win32.Krepper.l3gW
Elastic	malicious (high confidence)
MicroWorld-eScan	Dropped:Win32.Sality.RA
FireEye	Generic.mg.53c6e0b88aaf86b4
CAT-QuickHeal	W32.Sality.F
Skyhigh	BehavesLike.Win32.Generic.nc
McAfee	W32/Sality.i.gen
Cylance	unsafe
Zillya	Virus.Krepper.Win32.3
Sangfor	Suspicious.Win32.Save.ins
K7AntiVirus	Virus ( 000e341a1 )
Alibaba	Virus:Win32/Krepper.9ccf324d
K7GW	Virus ( 000e341a1 )
CrowdStrike	win/malicious_confidence_100% (W)
VirIT	Win32.Sality.F
Symantec	W32.Sality
tehtris	Generic.Malware
ESET-NOD32	Win32/Sality.H
Cynet	Malicious (score: 100)
APEX	Malicious
ClamAV	Win.Trojan.Kreepper-1
Kaspersky	Virus.Win32.Krepper.30760
BitDefender	Dropped:Win32.Sality.RA
NANO-Antivirus	Virus.Win32.Krepper.getc
Avast	Win32:Krepper-D
Tencent	Virus.Win32.Krepper.a
Sophos	ML/PE-A
F-Secure	Malware.W32/Krepper.30761
DrWeb	Win32.HLLP.Sector.30760
VIPRE	Dropped:Win32.Sality.RA
TrendMicro	PE_SALITY.L
Trapmine	malicious.high.ml.score
Emsisoft	Dropped:Win32.Sality.RA (B)
SentinelOne	Static AI – Malicious PE
GData	Dropped:Win32.Sality.RA
Jiangmin	Win32/Krepper.a
Webroot	W32.Krepper.Gen
Varist	W32/Krepper.WYNG-6962
Avira	W32/Krepper.30761
Antiy-AVL	Virus/Win32.Krepper.btnc
Kingsoft	Win32.Krepper.a.30760
Xcitium	Virus.Win32.Krepper.30760@14400g
Arcabit	Win32.Sality.RA
ZoneAlarm	Virus.Win32.Krepper.30760
Microsoft	Virus:Win32/Krepper.30760
Google	Detected
AhnLab-V3	Win32/Sality.O
ALYac	Dropped:Win32.Sality.RA
MAX	malware (ai score=100)
VBA32	Virus.Win32.Krepper.30760
Malwarebytes	Generic.Malware.AI.DDS
Panda	Trj/Genetic.gen
Zoner	Probably Heur.ExeHeaderL
TrendMicro-HouseCall	PE_SALITY.L
Rising	Win32.Krepper.a (CLASSIC)
Yandex	Trojan.GenAsa!dUDSOmJHLTo
Ikarus	Virus.Win32.Krepper
MaxSecure	Virus.W32.Krepper.30760
Fortinet	W32/Sality.AC
AVG	Win32:Krepper-D

How to remove Win32:Krepper-D?

Win32:Krepper-D removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X