Barys.431240 removal tips

The Barys.431240 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Barys.431240 virus can do?

Authenticode signature is invalid

How to determine Barys.431240?


File Info:
name: 718E5E04FF2CD92BB067.mlw
path: /opt/CAPEv2/storage/binaries/c902f7518d8051f669903c85cf560dbe2b1077a2b2af031a3c12593d7c7e59f6
crc32: C9A5ACDF
md5: 718e5e04ff2cd92bb06769d41d1f472f
sha1: 47fc01656b4c479ad0b571f03b743dbc50766091
sha256: c902f7518d8051f669903c85cf560dbe2b1077a2b2af031a3c12593d7c7e59f6
sha512: 6538d3563bf6df0e85663ed14cfb91531496a524de4eee2c7e099fc340751329ba58ca279f6e98d8525d1c15fe419dee8972043ecfa8986536ab39954dbd690b
ssdeep: 12288:sW4Yx7natiinijv7sOf8ZItekt5GY130GL8JYDe1Xtzvfeg/onZe8V:sW4EtwIIkfG4EYDodzv/onZe8V
type: PE32+ executable (console) x86-64, for MS Windows
tlsh: T19815AD5A62A801F9D8ABD03CC557E707E675748A03209BDB13E08A793F637E06E7E711
sha3_384: bf0dce775ed0a12161e5774ac66f878e83130f7432d0ec3e576b149c224768e96cb45f634c0a26c16d0778170459a85d
ep_bytes: 4883ec28e8070700004883c428e972fe
timestamp: 2023-06-02 09:44:11

Version Info:
0: [No Data]

Barys.431240 also known as:

Lionic	Trojan.Win32.Barys.4!c
MicroWorld-eScan	Gen:Variant.Barys.431240
FireEye	Gen:Variant.Barys.431240
ALYac	Gen:Variant.Barys.431240
Malwarebytes	Crypt.Trojan.MSIL.DDS
VIPRE	Gen:Variant.Barys.431240
K7AntiVirus	Trojan-Downloader ( 00592a551 )
Alibaba	TrojanDownloader:Win64/Agent_AGen.585178eb
K7GW	Trojan-Downloader ( 00592a551 )
Cyren	W64/Agent.EBK.gen!Eldorado
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (high confidence)
ESET-NOD32	a variant of Win64/TrojanDownloader.Agent_AGen.L
Cynet	Malicious (score: 100)
BitDefender	Gen:Variant.Barys.431240
Avast	Win64:Trojan-gen
Tencent	Win64.Trojan-Downloader.Oader.Dzlw
Emsisoft	Gen:Variant.Barys.431240 (B)
McAfee-GW-Edition	BehavesLike.Win64.Downloader.ch
Sophos	Mal/Generic-S
Ikarus	Trojan.Win64.Krypt
GData	Gen:Variant.Barys.431240
MAX	malware (ai score=89)
Antiy-AVL	Trojan/Win32.Sabsik
Arcabit	Trojan.Barys.D69488
Microsoft	Trojan:Win32/Sabsik.FL.B!ml
Google	Detected
McAfee	Artemis!718E5E04FF2C
Cylance	unsafe
Panda	Trj/Chgt.AD
TrendMicro-HouseCall	TROJ_GEN.R002H09F323
Rising	Downloader.Agent!8.B23 (CLOUD)
Fortinet	W64/Agent.BG!tr
AVG	Win64:Trojan-gen
DeepInstinct	MALICIOUS
CrowdStrike	win/malicious_confidence_100% (W)

How to remove Barys.431240?

Barys.431240 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X