Malware

Win32:ZAccess-W [Trj] malicious file

Malware Removal

The Win32:ZAccess-W [Trj] is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Win32:ZAccess-W [Trj] virus can do?

  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX
  • Anomalous binary characteristics

Related domains:

z.whorecord.xyz
a.tomx.xyz

How to determine Win32:ZAccess-W [Trj]?



File Info:

crc32: CCFA57EE
md5: ccf6e8ce70b68933f5b1131584e014e8
name: CCF6E8CE70B68933F5B1131584E014E8.mlw
sha1: a794f66776785defd00f5f3918ac81324619a616
sha256: 21387e46e8fddd2c2f3f6a24d5d60b5d526999dc5deed071f1f2f08165b35111
sha512: e2b27b5575ef27ad7b15cd1d5c5dbc0a8798ca243d427ee7d82d3f8ac712eb5800e727cef63f27cfc371f4edc3e4c8eae63b50b0e602f3d8cc685333cbccbfd8
ssdeep: 3072:s2B6N7nVRFrq966Ac1MhqqxORlBIjojZqMNvnRD8xQq90RH:s2B6VV3866f1MhqqxvMv5DXRH
type: PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed


Version Info:

0: [No Data]

Win32:ZAccess-W [Trj] also known as:

BkavW32.AIDetect.malware1
K7AntiVirusTrojan ( 004bcce41 )
LionicTrojan.Win32.Generic.4!c
Elasticmalicious (high confidence)
CynetMalicious (score: 100)
CylanceUnsafe
CrowdStrikewin/malicious_confidence_100% (D)
K7GWTrojan ( 004bcce41 )
Cybereasonmalicious.776785
SymantecTrojan.Gen.2
APEXMalicious
AvastWin32:ZAccess-W [Trj]
SophosMal/Generic-S
ComodoPacked.Win32.MUPX.Gen@24tbus
McAfee-GW-EditionBehavesLike.Win32.HLLP.ch
FireEyeGeneric.mg.ccf6e8ce70b68933
SentinelOneStatic AI – Malicious PE
Antiy-AVLTrojan/Generic.ASMalwS.18BC8
KingsoftWin32.Heur.KVMH015.a.(kcloud)
MicrosoftTrojan:Win32/Wacatac.B!ml
McAfeeArtemis!CCF6E8CE70B6
YandexTrojan.ZAccessW!7uWp5AEnyk8
IkarusTrojan.Agent
FortinetPossibleThreat
AVGWin32:ZAccess-W [Trj]
Paloaltogeneric.ml

How to remove Win32:ZAccess-W [Trj]?

Win32:ZAccess-W [Trj] removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment