Malware

About “Babar.22497” infection

Malware Removal

The Babar.22497 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Babar.22497 virus can do?

  • The binary likely contains encrypted or compressed data.
  • Anomalous binary characteristics

How to determine Babar.22497?



File Info:

crc32: B7A87646
md5: be5c6f18acc4f544acd934c1f84a5711
name: BE5C6F18ACC4F544ACD934C1F84A5711.mlw
sha1: 5f7608a592154202eb080fde4b53b27075618950
sha256: 36baff63db3cd99759c71144765ec9022965469f47c48275bb2e47ba9fc5de5d
sha512: d1726145e86e690563070d0230747ff45137ade69d89eb68658a27352fe547f83d2c06fca8b2bffc6097f160a472528d497df40d050aa0f63fa8f4d6493b4e86
ssdeep: 12288:grA6MGsYBzhdCJzeMRTmcaNnOQ7IMAoYj:grwdYBz+dH2O4IMAoY
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright: Copyright xa9OPSWAT, Inc..  All rights reserved.
InternalName: Range Workings
FileVersion: 8.8.1.254
CompanyName: OPSWAT, Inc.
PrivateBuild: 8.8.1.254
LegalTrademarks: Copyright xa9OPSWAT, Inc..  All rights reserved.
Comments: Realtek Arrival 10000
ProductName: Range Workings
Languages: English
ProductVersion: 8.8.1.254
FileDescription: Realtek Arrival 10000
OriginalFilename: Range Workings
Translation: 0x0409 0x04b0

Babar.22497 also known as:

BkavW32.AIDetect.malware1
K7AntiVirusPassword-Stealer ( 0052f96e1 )
Elasticmalicious (high confidence)
DrWebTrojan.PWS.Stealer.24943
CynetMalicious (score: 100)
ALYacGen:Variant.Babar.22497
CylanceUnsafe
ZillyaTrojan.Delf.Win32.110387
SangforTrojan.Win32.Save.a
CrowdStrikewin/malicious_confidence_100% (D)
K7GWPassword-Stealer ( 0052f96e1 )
Cybereasonmalicious.8acc4f
CyrenW32/Risk.MODC-0959
SymantecML.Attribute.HighConfidence
ESET-NOD32Win32/PSW.Delf.OSF
ZonerTrojan.Win32.73473
APEXMalicious
AvastWin32:Malware-gen
BitDefenderGen:Variant.Babar.22497
NANO-AntivirusTrojan.Win32.Stealer.fjiixv
MicroWorld-eScanGen:Variant.Babar.22497
Ad-AwareGen:Variant.Babar.22497
SophosML/PE-A
BitDefenderThetaGen:NN.ZexaF.34058.LS0@ayQRv9di
FireEyeGeneric.mg.be5c6f18acc4f544
EmsisoftGen:Variant.Babar.22497 (B)
SentinelOneStatic AI – Malicious PE
AviraHEUR/AGEN.1136373
eGambitUnsafe.AI_Score_99%
Antiy-AVLTrojan/Generic.ASMalwS.2898CFD
MicrosoftProgram:Win32/Wacapew.C!ml
GDataGen:Variant.Babar.22497
Acronissuspicious
MAXmalware (ai score=81)
RisingTrojan.Generic@ML.84 (RDML:vTIR6qnKblNAzplxa/c3og)
IkarusTrojan-Ransom.GandCrab
MaxSecureTrojan.Malware.121218.susgen
FortinetW32/CoinMiner.3E08!tr
AVGWin32:Malware-gen

How to remove Babar.22497?

Babar.22497 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment