Malware

Barys.108859 information

Malware Removal

The Barys.108859 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Barys.108859 virus can do?

  • Possible date expiration check, exits too soon after checking local time
  • Detected script timer window indicative of sleep style evasion
  • A process attempted to delay the analysis task.
  • Reads data out of its own binary image
  • The binary likely contains encrypted or compressed data.
  • A scripting utility was executed
  • Uses Windows utilities for basic functionality
  • Installs itself for autorun at Windows startup
  • Attempts to interact with an Alternate Data Stream (ADS)
  • Uses suspicious command line tools or Windows utilities

How to determine Barys.108859?



File Info:

crc32: 93B16C75
md5: 4fbad52ba8e7818eb70878ab6fff2228
name: 4FBAD52BA8E7818EB70878AB6FFF2228.mlw
sha1: 8cb8e8c981aee4def11ea53d3daeac039405d81a
sha256: 1c7fc2d6cad2683f5f04b4e546a2ae1d4b0a34dac316d0a1e055a7cbd326f8af
sha512: d3c4adc8ffcf5b728060a1bea93d40ed1d1b43c702b6a2b476b84f6919ba3707a6cd366aed4f7c81a16ad3ed82e75da69032debb7b487c45227497c750598ce3
ssdeep: 12288:oLo86e6h8wgIFCROgG/L2/2XqIDvY9+ZA+lK2a0jFY:s6e6h3gI4cgGzw26Sw9eAlR0j
type: PE32 executable (GUI) Intel 80386, for MS Windows, MS CAB-Installer self-extracting archive


Version Info:

FileDescription: Puyo Puyo Tetris 2 Steam Optimizer for Integrated GPUs and Non-AVX CPUs
FileVersion: 1.01
CompanyName: dev2steam
Translation: 0x0409 0x04b0

Barys.108859 also known as:

CynetMalicious (score: 90)
ALYacGen:Variant.Barys.108859
SangforTrojan.Win32.Save.a
CrowdStrikewin/malicious_confidence_60% (W)
AlibabaTrojanDropper:Win32/Generic.0e63545b
SymantecML.Attribute.HighConfidence
APEXMalicious
AvastWin32:Malware-gen
BitDefenderGen:Variant.Barys.108859
MicroWorld-eScanGen:Variant.Barys.108859
Ad-AwareGen:Variant.Barys.108859
VIPRETrojan.Win32.Generic!BT
McAfee-GW-EditionBehavesLike.Win32.Ransomware.hc
FireEyeGeneric.mg.4fbad52ba8e7818e
EmsisoftGen:Variant.Barys.108859 (B)
MicrosoftTrojan:Win32/Wacatac.B!ml
ArcabitTrojan.Barys.D1A93B
GDataGen:Variant.Barys.108859
TACHYONTrojan/W32.Genome.542720
McAfeeArtemis!4FBAD52BA8E7
MAXmalware (ai score=82)
FortinetW32/PossibleThreat
AVGWin32:Malware-gen
Paloaltogeneric.ml
Qihoo-360Win32/TrojanDropper.Generic.HgIASRsA

How to remove Barys.108859?

Barys.108859 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment