| K7 Detection Name | Affected OS | Prevalence | AV Definition Version |
|---|---|---|---|
| Trojan ( 005bcd291 ) | Windows | Low | 12.196.53766 |
| MD5 | 98e538d63ec5a23a3acc374236ae20b6 |
| SHA256 | 4d8fbc7578dca954407746a1d73e3232cd8db79dccd57acbeef80da369069a91 |
| File Size | 752,128 bytes |
| Packer Information | N/A |
| First Seen | 03-11-2024 |
| Last Seen | 15-11-2024 |
| Aliases | MSIL/Kryptik.AMPM |
Behavior Details
1. Dropped files:
GDIPFONTCACHEV1.DAT
Under the folder
C:\Users\<user_name>\AppData\Local
2. Dropped files:
Application.exe
Under the folder
C:\ProgramData\ogriIqEF
Removal Instructions
1. Update the copy of K7 security to the latest version. 2. Scan the system completely and remove the detected files. 3. Restart the machine.