TR/Crypt.XPACK.Gen2

By LoneStar in Trojans

Threat Scorecard

Threat Level:	90 % (High)
Infected Computers:	2,782

First Seen:	December 19, 2011
Last Seen:	January 19, 2023
OS(es) Affected:	Windows

TR/Crypt.XPACK.Gen2 is a dangerous Trojan that has a complex coding of scripts. TR/Crypt.XPACK.Gen2 is able to encode itself by reverse-engineering. TR/Crypt.XPACK.Gen2 has a pronounced damaging payload executed on the local network level. Once decoded, TR/Crypt.XPACK.Gen2 damages security programs that are able to uninstall TR/Crypt.XPACK.Gen2. Remove TR/Crypt.XPACK.Gen2 as soon as possible.

Table of Contents

Aliases

15 security vendors flagged this file as malicious.

Antivirus Vendor	Detection
Panda	Trj/Dtcontx.A
AVG	SHeur4.BAAQ
Fortinet	W32/Zbot.ANM!tr
AhnLab-V3	Trojan/Win32.Inject
McAfee-GW-Edition	Heuristic.LooksLike.Win32.SuspiciousPE.J!83
Sophos	Troj/Agent-ZYF
Kaspersky	Trojan.Win32.Inject.fbae
McAfee	Artemis!6B2BCA561F85
Fortinet	W32/Krap.Z!tr.pws
Ikarus	Trojan.SuspectCRC
Sophos	Mal/Krap-Z
AVG	unknown virus Win32/DH{Mw}
Fortinet	W32/Jorik_Fraud.RPI!tr
Ikarus	Win32.FakeAV
McAfee-GW-Edition	FakeAlert-PJ.gen.by

SpyHunter Detects & Remove TR/Crypt.XPACK.Gen2

File System Details

TR/Crypt.XPACK.Gen2 may create the following file(s):

Expand All | Collapse All

#	File Name	MD5	Detections Detections: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
1.	wso.dll	5891f769c54e9fe975e27b35d5ce3b76	327
Name: wso.dll MD5: 5891f769c54e9fe975e27b35d5ce3b76 Size: 262.14 KB (262144 bytes) Detections: 327 Type: Dynamic link library Path: %PROGRAMFILES%\Web Search Operator\4.1.0.2080 Group: Malware file Last Updated: April 6, 2016
2.	CMWIE.dll	4eef59a0845fdb31fb8c5ceead46523e	245
Name: CMWIE.dll MD5: 4eef59a0845fdb31fb8c5ceead46523e Size: 1.32 MB (1323008 bytes) Detections: 245 Type: Dynamic link library Path: %PROGRAMFILES%\Content Management Wizard\1.1.0.1990 Group: Malware file Last Updated: January 20, 2022
3.	RespawnMod_by_slava-zis.dll	1c02cbdf5171e071db90f715e3207c81	74
Name: RespawnMod_by_slava-zis.dll MD5: 1c02cbdf5171e071db90f715e3207c81 Size: 10.75 KB (10752 bytes) Detections: 74 Type: Dynamic link library Path: %USERPROFILE%\Escritorio\Wall Hack Pb Actualizado Group: Malware file Last Updated: January 28, 2013
4.	fifa13.exe	671b5572d807b53e47f675beb41298ca	74
Name: fifa13.exe MD5: 671b5572d807b53e47f675beb41298ca Size: 66.02 MB (66020864 bytes) Detections: 74 Type: Executable File Path: %PROGRAMFILES%\VictorVal\FIFA 2013 Repack\Game Group: Malware file Last Updated: April 23, 2026
5.	sims3.exe	b29529762e788f8ccf0a8344798f1fb6	23
Name: sims3.exe MD5: b29529762e788f8ccf0a8344798f1fb6 Size: 13.7 MB (13704192 bytes) Detections: 23 Type: Executable File Path: %USERPROFILE%\Application Data Group: Malware file Last Updated: March 30, 2015
6.	Indexer .exe	e0aa8536089ac74504d68382980d45d5	19
Name: Indexer .exe MD5: e0aa8536089ac74504d68382980d45d5 Size: 2.1 MB (2104832 bytes) Detections: 19 Type: Executable File Path: %USERPROFILE%\Start Menu\Programs\Startup Group: Malware file Last Updated: August 23, 2018
7.	PAF.exe	2a2e6d94c69e94d79ec2444316fa3855	17
Name: PAF.exe MD5: 2a2e6d94c69e94d79ec2444316fa3855 Size: 2.06 MB (2069100 bytes) Detections: 17 Type: Executable File Path: C:\ProgramData\WBKOYK\PAF.exe Group: Malware file Last Updated: July 17, 2022
8.	60EC.tmp	2b1fadd6cff0b89e505d351991868514	8
Name: 60EC.tmp MD5: 2b1fadd6cff0b89e505d351991868514 Size: 23.04 KB (23040 bytes) Detections: 8 Type: Temporary File Path: C:\Users\<username>\AppData\Roaming\60EC.tmp Group: Malware file Last Updated: August 27, 2022
9.	tusdmpac.dll	8bc5c44073ff33bed9fcd26e75a197c5	5
Name: tusdmpac.dll MD5: 8bc5c44073ff33bed9fcd26e75a197c5 Size: 84.48 KB (84480 bytes) Detections: 5 Type: Dynamic link library Path: %WINDIR% Group: Malware file Last Updated: June 19, 2012
10.	_ex-68.exe	5a9dd22b1bf52ce99139fce31e137aff	5
Name: _ex-68.exe MD5: 5a9dd22b1bf52ce99139fce31e137aff Size: 885.76 KB (885760 bytes) Detections: 5 Type: Executable File Path: %WINDIR%\Temp Group: Malware file Last Updated: January 10, 2012
11.	27E9.tmp	aeff131c648f6bb2b544003ad0c8cf18	5
Name: 27E9.tmp MD5: aeff131c648f6bb2b544003ad0c8cf18 Size: 23.04 KB (23040 bytes) Detections: 5 Type: Temporary File Path: C:\Users\<username>\AppData\Roaming\27E9.tmp Group: Malware file Last Updated: August 27, 2022
12.	cdrom.sys	f6fc29b5ef2ebab3f2677eb89cc3ab83	4
Name: cdrom.sys MD5: f6fc29b5ef2ebab3f2677eb89cc3ab83 Size: 62.97 KB (62976 bytes) Detections: 4 Type: System file Path: %WINDIR%\System32\drivers Group: Malware file Last Updated: January 13, 2012
13.	lagopoogqu.exe	c41885f522a63f17e6f121907cc11343	3
Name: lagopoogqu.exe MD5: c41885f522a63f17e6f121907cc11343 Size: 2.49 MB (2491904 bytes) Detections: 3 Type: Executable File Path: %ALLUSERSPROFILE%\Application Data\oropwddpupc Group: Malware file Last Updated: June 25, 2012
14.	CPAIEAddOn.dll	685318e1e101bf9c535fda6e89758e88	2
Name: CPAIEAddOn.dll MD5: 685318e1e101bf9c535fda6e89758e88 Size: 253.95 KB (253952 bytes) Detections: 2 Type: Dynamic link library Path: %PROGRAMFILES%\Customized Platform Advancer\4.3.0.2200 Group: Malware file Last Updated: January 14, 2013
15.	wxywsrogbek.exe	f1822b6f2fc7e1daa42fdbdb1e518b9e	2
Name: wxywsrogbek.exe MD5: f1822b6f2fc7e1daa42fdbdb1e518b9e Size: 3.65 MB (3658752 bytes) Detections: 2 Type: Executable File Path: %ALLUSERSPROFILE%\h Group: Malware file Last Updated: January 2, 2012
16.	a3rRjDr1aNVpNa.exe	50dff50c0b488f3587d66abf5909d4cc	2
Name: a3rRjDr1aNVpNa.exe MD5: 50dff50c0b488f3587d66abf5909d4cc Size: 345.34 KB (345344 bytes) Detections: 2 Type: Executable File Path: %ALLUSERSPROFILE%\Application Data Group: Malware file Last Updated: January 16, 2012
17.	fontcache.exe	3206e2b62938d4688235b4e51f31880f	2
Name: fontcache.exe MD5: 3206e2b62938d4688235b4e51f31880f Size: 199.16 KB (199168 bytes) Detections: 2 Type: Executable File Path: %USERPROFILE%\Application Data Group: Malware file Last Updated: February 22, 2012
18.	wnd.exe	4496566c8c820e25ee4fc2fce449a8a2	2
Name: wnd.exe MD5: 4496566c8c820e25ee4fc2fce449a8a2 Size: 235 KB (235008 bytes) Detections: 2 Type: Executable File Path: %SystemDrive%\Documents and Settings\Jean Louis Gay\Local Settings\Application Data Group: Malware file Last Updated: December 5, 2012
19.	7CF46C.exe	6b2bca561f850041f4b3e073305fcbf2	2
Name: 7CF46C.exe MD5: 6b2bca561f850041f4b3e073305fcbf2 Size: 52.73 KB (52736 bytes) Detections: 2 Type: Executable File Path: %APPDATA%\7CF46C Group: Malware file Last Updated: May 15, 2013
20.	bitcfg.dll	b054d6aebb91333d42d2c22a53e8be6b	1
Name: bitcfg.dll MD5: b054d6aebb91333d42d2c22a53e8be6b Size: 38.91 KB (38912 bytes) Detections: 1 Type: Dynamic link library Group: Malware file Last Updated: March 29, 2013
21.	setup.exe	261e576179c72343ae498516a5a11f0b	1
Name: setup.exe MD5: 261e576179c72343ae498516a5a11f0b Size: 30.72 KB (30720 bytes) Detections: 1 Type: Executable File Path: %WINDIR%\TEMP\feqfhy Group: Malware file Last Updated: December 27, 2011
22.	5689.sys	589e8856b727480212aa81fba516cde3	1
Name: 5689.sys MD5: 589e8856b727480212aa81fba516cde3 Size: 141.95 KB (141952 bytes) Detections: 1 Type: System file Path: %TEMP% Group: Malware file Last Updated: February 23, 2012
23.	jucheck.exe	bea98d9215a90da649e5c69c41c988f1	1
Name: jucheck.exe MD5: bea98d9215a90da649e5c69c41c988f1 Size: 870.91 KB (870912 bytes) Detections: 1 Type: Executable File Path: %WINDIR%\Temp Group: Malware file Last Updated: August 6, 2012
24.	Protector-kdpi.exe	d1a85ad332e5d9ea184fb3e0d8337761	1
Name: Protector-kdpi.exe MD5: d1a85ad332e5d9ea184fb3e0d8337761 Size: 2.26 MB (2267648 bytes) Detections: 1 Type: Executable File Path: %SystemDrive%\Users\<username>\AppData\Roaming Group: Malware file Last Updated: April 22, 2013
25.	Afschrift_Deurwaarders_exploot_DMS0986434475447_uitspraak20092012.ÔÇ«fdp.exe	58822ba277223c00d35718435f4b41eb	1
Name: Afschrift_Deurwaarders_exploot_DMS0986434475447_uitspraak20092012.ÔÇ«fdp.exe MD5: 58822ba277223c00d35718435f4b41eb Size: 102.91 KB (102912 bytes) Detections: 1 Type: Executable File Path: %TEMP%\Tijdelijke map 1 voor Afschrift_Deurwaarders_exploot_dmk0986439975447uitspraak20092012 fdp.zip Group: Malware file Last Updated: March 12, 2013
26.	46e66f61-5796.exe	06f87c90d2d0ba9754cbf7861be6a693	1
Name: 46e66f61-5796.exe MD5: 06f87c90d2d0ba9754cbf7861be6a693 Size: 86.01 KB (86016 bytes) Detections: 1 Type: Executable File Path: %USERPROFILE% Group: Malware file Last Updated: December 19, 2012
27.	16c85dd8-5762.exe	7036f21f78fcabe45e28ce0c0d22fdab	1
Name: 16c85dd8-5762.exe MD5: 7036f21f78fcabe45e28ce0c0d22fdab Size: 82.94 KB (82944 bytes) Detections: 1 Type: Executable File Path: %USERPROFILE% Group: Malware file Last Updated: February 6, 2013
28.	b077f0dc-5689.exe	5f5e0b3295e3ca1e0baa398c9c868f39	1
Name: b077f0dc-5689.exe MD5: 5f5e0b3295e3ca1e0baa398c9c868f39 Size: 130.04 KB (130048 bytes) Detections: 1 Type: Executable File Path: %USERPROFILE% Group: Malware file Last Updated: December 17, 2012
29.	uummny171h06g-5937.exe	5f5faf0a7eab1a86884dc4617412c158	1
Name: uummny171h06g-5937.exe MD5: 5f5faf0a7eab1a86884dc4617412c158 Size: 299.52 KB (299520 bytes) Detections: 1 Type: Executable File Path: %USERPROFILE% Group: Malware file Last Updated: March 21, 2013

More files

EnigmaSoft’s Payment Processor Digital River GmbH Filing for Bankruptcy Does Not Impact SpyHunter Customers’ Anti-Malware Protection

Search

Change Region

TR/Crypt.XPACK.Gen2

Threat Scorecard

EnigmaSoft Threat Scorecard

Aliases

SpyHunter Detects & Remove TR/Crypt.XPACK.Gen2

File System Details

Submit Comment

Trending

PUP.WaveMax Sound Editor

Trojan.Kryptik.JUD

Trojan.Agent.MBD

Most Viewed

Pornktube.porn

How To Fix 'Printer Driver is Unavailable' Error

Discord Shows Black Screen when Sharing Screen