W32/Yakes.B!tr

By GoldSparrow in Trojans

Threat Scorecard

Threat Level:	90 % (High)
Infected Computers:	61

First Seen:	October 19, 2011
Last Seen:	May 4, 2021
OS(es) Affected:	Windows

W32/Yakes.B!tr is a hazardous Trojan infection which comes together with the bogus Internal Revenue Service (IRS) email message. The false IRS email with the headline "Last Notice" carries an infected attachment called "IRS_Calculations_#ID6749.zip". If the recipient opens the malicious attachment and runs the file, W32/Yakes.B!tr corrupts his/her PC. If you receive a spam IRS "Last Notice" email, do not click and open the attachment. Delete a fraudulent IRS email together with the malware included as soon as you can.

Table of Contents

Aliases

15 security vendors flagged this file as malicious.

Anti-Virus Software	Detection
AntiVir	TR/Kazy.156377
DrWeb	Trojan.Siggen5.3175
Comodo	Heur.Suspicious
Kaspersky	Backdoor.Win32.IRCBot.aepk
McAfee	PWS-Zbot-FAQO!228796B0C718
Panda	Trj/Dtcontx.C
Sophos	Troj/Zbot-EGQ
McAfee-GW-Edition	Artemis!AADA2999CA19
McAfee	RDN/Generic.bfr!bh
Kaspersky	Trojan-Ransom.Win32.Blocker.awyl
Symantec	Trojan Horse
Kaspersky	Trojan-Ransom.Win32.Blocker.awuw
AVG	SHeur4.BDTH
Ikarus	Trojan-Ransom.Win32.Blocker
AntiVir	TR/Ransom.Blocker.awjc

SpyHunter Detects & Remove W32/Yakes.B!tr

File System Details

W32/Yakes.B!tr may create the following file(s):

Expand All | Collapse All

#	File Name	MD5	Detections Detections: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
1.	checkdisku.exe	b4585c4492446882fc861414e47e073c	14
Name: checkdisku.exe MD5: b4585c4492446882fc861414e47e073c Size: 88.57 KB (88576 bytes) Detections: 14 Type: Executable File Path: %APPDATA%\Microsoft\Internet Explorer Group: Malware file Last Updated: March 29, 2013
2.	mspzoxya.pif	f491d31f424895798c1048207fa735a6	4
Name: mspzoxya.pif MD5: f491d31f424895798c1048207fa735a6 Size: 33.79 KB (33792 bytes) Detections: 4 Path: %ALLUSERSPROFILE%\Local Settings\Temp Group: Malware file Last Updated: March 2, 2012
3.	nbcayu.exe	e5b92af310683bbd12dbbac54e3eac99	2
Name: nbcayu.exe MD5: e5b92af310683bbd12dbbac54e3eac99 Size: 1.86 MB (1860096 bytes) Detections: 2 Type: Executable File Path: %SystemDrive%\Documents and Settings\Guest\Application Data\Microsoft Group: Malware file Last Updated: June 22, 2012
4.	6ebb980c-783d-4f6e-9cb6-3d73be88a351.exe	6f0349d5f9bb508ed431e57c420e2a47	2
Name: 6ebb980c-783d-4f6e-9cb6-3d73be88a351.exe MD5: 6f0349d5f9bb508ed431e57c420e2a47 Size: 35.32 KB (35328 bytes) Detections: 2 Type: Executable File Path: %SystemDrive%\Users\<username>\AppData\Roaming Group: Malware file Last Updated: March 21, 2013
5.	a9f80a6a-b7af-4390-96e9-8d30bb426ff7.exe	aada2999ca199bbdc00f673f941887f8	2
Name: a9f80a6a-b7af-4390-96e9-8d30bb426ff7.exe MD5: aada2999ca199bbdc00f673f941887f8 Size: 39.42 KB (39424 bytes) Detections: 2 Type: Executable File Path: %SystemDrive%\Users\<username>\AppData\Roaming Group: Malware file Last Updated: March 21, 2013
6.	nVDLNGfW.exe	f92324beb799f8e7b09d674eb8476b25	2
Name: nVDLNGfW.exe MD5: f92324beb799f8e7b09d674eb8476b25 Size: 924.16 KB (924160 bytes) Detections: 2 Type: Executable File Path: %USERPROFILE%\Lokale Einstellungen\Anwendungsdaten\Adobe Group: Malware file Last Updated: July 12, 2013
7.	jpm.exe	bf39bb7024b4b57987bcd823be6430fa	1
Name: jpm.exe MD5: bf39bb7024b4b57987bcd823be6430fa Size: 344.06 KB (344064 bytes) Detections: 1 Type: Executable File Path: %SystemDrive%\Documents and Settings\Francesca\Impostazioni locali\Dati applicazioni Group: Malware file Last Updated: July 5, 2012
8.	f2e6fe2e.com	e31213f10015971d860474495d21fb69	1
Name: f2e6fe2e.com MD5: e31213f10015971d860474495d21fb69 Size: 36.86 KB (36864 bytes) Detections: 1 Type: Command, executable file Path: %ALLUSERSPROFILE%\Local Settings\Temp Group: Malware file Last Updated: October 25, 2011
9.	ekxsekx.exe	9dc0e96a6274b634fdbf3d6b61d8bcce	1
Name: ekxsekx.exe MD5: 9dc0e96a6274b634fdbf3d6b61d8bcce Size: 90.62 KB (90624 bytes) Detections: 1 Type: Executable File Path: %APPDATA%\Microsoft\Protect Group: Malware file Last Updated: November 1, 2011
10.	XHFHGEBDbadw.exe	f852c604cf75f0d6718ab877e0c17f80	1
Name: XHFHGEBDbadw.exe MD5: f852c604cf75f0d6718ab877e0c17f80 Size: 49.15 KB (49152 bytes) Detections: 1 Type: Executable File Path: %WINDIR%\system32 Group: Malware file Last Updated: December 8, 2011
11.	csrss.exe	9c00a7da813107d645889f2fad2973bf	1
Name: csrss.exe MD5: 9c00a7da813107d645889f2fad2973bf Size: 33.28 KB (33280 bytes) Detections: 1 Type: Executable File Path: %USERPROFILE%\Application Data Group: Malware file Last Updated: January 24, 2012
12.	0.876798002448508967f76.exe	5a985bd668b5b41354dfe19521177bc6	1
Name: 0.876798002448508967f76.exe MD5: 5a985bd668b5b41354dfe19521177bc6 Size: 147.96 KB (147968 bytes) Detections: 1 Type: Executable File Path: %SystemDrive%\Users\<username>\AppData\Roaming Group: Malware file Last Updated: February 22, 2012
13.	Skype.exe	43198ee4c63651fd7383ad7b5a322a18	1
Name: Skype.exe MD5: 43198ee4c63651fd7383ad7b5a322a18 Size: 57.85 KB (57856 bytes) Detections: 1 Type: Executable File Path: %LOCALAPPDATA%\Skype Group: Malware file Last Updated: March 2, 2012
14.	mshpiqai.exe	5f4720bc139ff1a0f1454bf57f2653d2	1
Name: mshpiqai.exe MD5: 5f4720bc139ff1a0f1454bf57f2653d2 Size: 41.98 KB (41984 bytes) Detections: 1 Type: Executable File Path: %SystemDrive%\Users\<username>\Local Settings\Temp Group: Malware file Last Updated: January 28, 2013
15.	e81236cb-87d4-469a-8919-ea4322547946.exe	da6ebac1d8016d0c74e351ae4c64f807	1
Name: e81236cb-87d4-469a-8919-ea4322547946.exe MD5: da6ebac1d8016d0c74e351ae4c64f807 Size: 41.98 KB (41984 bytes) Detections: 1 Type: Executable File Path: %APPDATA% Group: Malware file Last Updated: March 21, 2013
16.	e7451505-7955-43eb-a078-d233eff73b2f.exe	3dac4f2b56d696e8f2545154da1d2d79	1
Name: e7451505-7955-43eb-a078-d233eff73b2f.exe MD5: 3dac4f2b56d696e8f2545154da1d2d79 Size: 35.84 KB (35840 bytes) Detections: 1 Type: Executable File Path: %APPDATA% Group: Malware file Last Updated: March 21, 2013
17.	revalver_mk3_keygen_taringa.exe	5078db0e6547988da0242e664e685e38	0
Name: revalver_mk3_keygen_taringa.exe MD5: 5078db0e6547988da0242e664e685e38 Size: 68.68 KB (68688 bytes) Detections: 0 Type: Executable File Group: Malware file Last Updated: October 20, 2011
18.	revalver_mk3_keygen_taringa.exe	c6339d449a6a994ba1cace3a4ea56274	0
Name: revalver_mk3_keygen_taringa.exe MD5: c6339d449a6a994ba1cace3a4ea56274 Size: 78.33 KB (78336 bytes) Detections: 0 Type: Executable File Group: Malware file Last Updated: October 20, 2011
19.	revalver_mk3_keygen_taringa.exe	d79de11e9107c3bad89b018e0bbdc98c	0
Name: revalver_mk3_keygen_taringa.exe MD5: d79de11e9107c3bad89b018e0bbdc98c Size: 78.33 KB (78336 bytes) Detections: 0 Type: Executable File Group: Malware file Last Updated: October 20, 2011
20.	revalver_mk3_keygen_taringa.exe	df6006f869175cd1af6e8a602b9da263	0
Name: revalver_mk3_keygen_taringa.exe MD5: df6006f869175cd1af6e8a602b9da263 Size: 78.33 KB (78336 bytes) Detections: 0 Type: Executable File Group: Malware file Last Updated: October 20, 2011
21.	revalver_mk3_keygen_taringa.exe	49f3aafaa8984973110ed1a2274e4112	0
Name: revalver_mk3_keygen_taringa.exe MD5: 49f3aafaa8984973110ed1a2274e4112 Size: 78.33 KB (78336 bytes) Detections: 0 Type: Executable File Group: Malware file Last Updated: October 20, 2011

Enigma Software Group Prevails Over Malwarebytes at the Ninth Circuit

Search

Change Region

W32/Yakes.B!tr

Threat Scorecard

EnigmaSoft Threat Scorecard

Aliases

SpyHunter Detects & Remove W32/Yakes.B!tr

File System Details

Submit Comment

Trending

Rzfu Ransomware

'YouPorn' Email Scam

Rzkd Ransomware

Most Viewed

Is Lookmovie.io Safe?

How To Fix 'Printer Driver is Unavailable' Error

Discord Shows Black Screen when Sharing Screen