Malware

About “Application.Keygen.Strictor.61692” infection

Malware Removal

The Application.Keygen.Strictor.61692 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Application.Keygen.Strictor.61692 virus can do?

  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • Creates RWX memory
  • Dynamic (imported) function loading detected
  • Reads data out of its own binary image
  • CAPE extracted potentially suspicious content
  • Unconventionial language used in binary resources: Hungarian
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • Queries information on disks for anti-virtualization via Device Information APIs

How to determine Application.Keygen.Strictor.61692?



File Info:

name: F1EBEB808C3A20460ABC.mlw
path: /opt/CAPEv2/storage/binaries/bf69cf209a91b45405fc05782f27a3e27859dc3347395728a5696851089dc70b
crc32: A9376A15
md5: f1ebeb808c3a20460abca896177ac591
sha1: cb059f07b68d090b963c9411e508d6447d1ceb0b
sha256: bf69cf209a91b45405fc05782f27a3e27859dc3347395728a5696851089dc70b
sha512: fa6bbbdbaf0b3822e82673cec3b7b8e7b978f1dd931379e9038347bb53e3f66f5ad7aa6e6887c598625081443003190268d50c5979a2847359e83b740b2c1abc
ssdeep: 98304:acLyGEhL9gyCEmHE75KdRBOxP+6fMqH5/C2GU+9G:aZGW5fCET5KdXeFfMdxU+
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1D0063335B0C1C972F2B60578DED7E3C9122A7E342E26556336EC3B0E9B3A6811D5E187
sha3_384: bed078292baa20cdc3bdc5a366de330f0acae51b08efcc0d5cfa0a380983379d632b69287fdeb3730d5c312dfd7e0902
ep_bytes: 558bec83c4f0b8dc2b4300e8dc32fdff
timestamp: 2014-11-22 14:38:43


Version Info:

0: [No Data]

Application.Keygen.Strictor.61692 also known as:

BkavW32.AIDetect.malware2
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Application.Keygen.Strictor.61692
FireEyeGeneric.mg.f1ebeb808c3a2046
ALYacGen:Variant.Application.Keygen.Strictor.61692
CylanceUnsafe
K7AntiVirusUnwanted-Program ( 004ba36f1 )
K7GWUnwanted-Program ( 004ba36f1 )
Cybereasonmalicious.08c3a2
BitDefenderThetaGen:NN.ZelphiF.34294.0NW@aetM3VdG
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/Keygen.HU potentially unsafe
TrendMicro-HouseCallTROJ_GEN.R002H06KQ21
BitDefenderGen:Variant.Application.Keygen.Strictor.61692
Ad-AwareGen:Variant.Application.Keygen.Strictor.61692
SophosDI Keygen (PUA)
VIPRETrojan.Win32.Generic.pak!cobra
McAfee-GW-EditionGenericRXFX-TU!F1EBEB808C3A
SentinelOneStatic AI – Suspicious PE
EmsisoftGen:Variant.Application.Keygen.Strictor.61692 (B)
Ikaruspossible-Threat.HackTool.crack
GDataGen:Variant.Application.Keygen.Strictor.61692
JiangminTrojan.Heur.rq
WebrootPUA.Gen
Antiy-AVLTrojan/Generic.ASMalwS.F552D8
GridinsoftRansom.Win32.Wacatac.sa
MicrosoftTrojan:Win32/Wacatac.A!ml
CynetMalicious (score: 100)
AhnLab-V3Unwanted/Win32.Keygen.R116600
McAfeeGenericRXFX-TU!F1EBEB808C3A
VBA32BScope.Exploit.CVE-2020-0601
MalwarebytesMalware.AI.1387105692
APEXMalicious
RisingMalware.Heuristic!ET#92% (RDMK:cmRtazo7AW6E5ukc253c+I3X+TSG)
YandexTrojan.GenAsa!1r7VP6Hagy4
MAXmalware (ai score=77)
eGambitUnsafe.AI_Score_100%
FortinetRiskware/KeyGen
CrowdStrikewin/malicious_confidence_100% (D)
MaxSecureTrojan.Malware.300983.susgen

How to remove Application.Keygen.Strictor.61692?

Application.Keygen.Strictor.61692 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment