Malware

What is “Barys.412050”?

Malware Removal

The Barys.412050 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Barys.412050 virus can do?

  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid

How to determine Barys.412050?



File Info:

name: F4A67015199A30113171.mlw
path: /opt/CAPEv2/storage/binaries/b04770c9f0ec8f503af2f5f8989c191f5d3f8598f2bd09b5b460fd02c0b8782b
crc32: 1307E77C
md5: f4a67015199a30113171181ad49e570f
sha1: 93c624f68c086d17ee6fecd30cee185c7ab1367c
sha256: b04770c9f0ec8f503af2f5f8989c191f5d3f8598f2bd09b5b460fd02c0b8782b
sha512: a1bd6c2b8e7c44da3ef62c3176707351e5a6ca5e48289178b2a86ac849dd688ba3f78388204ca78dd4be8570ffa468f969d7f6ecfaa979f2078c39ea4e1b5b63
ssdeep: 49152:ZuEviL//sf7x1nJSWgw5mV4duBfJOpRpiM2hYftV/TzAgz9WaMSYYymoQaK7Qma0:Z50/8mq6fqRpiM2C62+moQaKE7Jyt
type: PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
tlsh: T15F465B27B349663DC09F0B3AD837B214983F7661791AAC475BFDA88C8F355402E7A607
sha3_384: e697b58023aa14d4e3d9c5acad5cafade1fd5c4b746376faf48be5603811057a1633773933325e5be30e2e63b806361e
ep_bytes: 558bec83c4c0b81c2d8a00e8e4f6b4ff
timestamp: 2024-04-02 16:37:06


Version Info:

0: [No Data]

Barys.412050 also known as:

LionicTrojan.Win32.Grandoreiro.7!c
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Barys.412050
FireEyeGen:Variant.Barys.412050
SkyhighBehavesLike.Win32.Dropper.th
ALYacGen:Variant.Barys.412050
Cylanceunsafe
SangforTrojan.Win32.Grandoreiro.Vru1
CrowdStrikewin/malicious_confidence_90% (W)
SymantecML.Attribute.HighConfidence
KasperskyUDS:Trojan-Banker.Win32.Grandoreiro.gen
BitDefenderGen:Variant.Barys.412050
AvastBankerX-gen [Trj]
F-SecureHeuristic.HEUR/AGEN.1364204
VIPREGen:Variant.Barys.412050
EmsisoftGen:Variant.Barys.412050 (B)
IkarusTrojan-Spy.Grandoreiro
GoogleDetected
AviraHEUR/AGEN.1364204
MicrosoftTrojan:Win32/Wacatac.B!ml
ArcabitTrojan.Barys.D64992
ZoneAlarmUDS:Trojan-Banker.Win32.Grandoreiro.gen
GDataGen:Variant.Barys.412050
CynetMalicious (score: 100)
MAXmalware (ai score=86)
RisingTrojan.Generic@AI.100 (RDML:NiQ8hCjfEA+ObMNmcbd4rQ)
FortinetW32/Grandoreiro.CB!tr.spy
AVGBankerX-gen [Trj]
alibabacloudTrojan[stealer]:Win/Grandoreiro.gen

How to remove Barys.412050?

Barys.412050 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment