Malware

Fragtor.103425 removal

Malware Removal

The Fragtor.103425 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Fragtor.103425 virus can do?

  • At least one process apparently crashed during execution
  • Dynamic (imported) function loading detected
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • Unconventionial binary language: Portuguese (Brazil)
  • Unconventionial language used in binary resources: Portuguese (Brazilian)
  • The binary contains an unknown PE section name indicative of packing
  • Executable file is packed/obfuscated with ASPack
  • Authenticode signature is invalid

How to determine Fragtor.103425?



File Info:

name: AC3E6D30653D2393926E.mlw
path: /opt/CAPEv2/storage/binaries/87edb0fe856b42d4b45459600703640ace53dd09a1fba49e0213806aa7276044
crc32: C46A8067
md5: ac3e6d30653d2393926ef8ba74d31e77
sha1: 076119a5146274cabc0f302691a294b4e6321d15
sha256: 87edb0fe856b42d4b45459600703640ace53dd09a1fba49e0213806aa7276044
sha512: 65878ec026ce025f52a3850e3da209d4cde5390c223ded7087b17ee96cccbd9094c3cee3fbce3274046851ec44715fb07180cc140071d23eab8a40dc34408b24
ssdeep: 24576:Xzyb1/+hW87BRyzDYyWN8dWFOpkoUQcKKVaFTMy:X+kL7jyzDYyWmdW9VaFT
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T154456C25FF009437DA73B6355C5381DDA829B7552D10AC8B2BE42E4CEFB87827C3A256
sha3_384: 0a5e88575302ffb8aea7de94db04eb8116306650e1718d7599310c1547767596cd4c8122e4a52665354a726b74016585
ep_bytes: 8bc88b55f88b45fce8a4000000ff45f8
timestamp: 2010-08-01 10:32:37


Version Info:

CompanyName: JDSOFT SISTEMAS LTDA ME
FileDescription: Software de atualização
FileVersion: 2.1.0.23
InternalName: nova.exe
LegalCopyright: Todos os direitos reservados para JDSOFT SISTEMAS - 2002
LegalTrademarks: Todos os direitos reservados para JDSOFT SISTEMAS - 2002
OriginalFilename: frm_Nova
ProductName: Nova JDSOFT
ProductVersion: 2.1.0.23
Comments: Software de Atualização - JDSOFT
Translation: 0x0416 0x04e4

Fragtor.103425 also known as:

BkavW32.AIDetect.malware2
MicroWorld-eScanGen:Variant.Fragtor.103425
FireEyeGeneric.mg.ac3e6d30653d2393
ALYacGen:Variant.Fragtor.103425
CylanceUnsafe
ZillyaTrojan.Black.Win32.53347
Sangfor[ASPACK V2.12]
K7AntiVirusTrojan ( 7000000f1 )
K7GWTrojan ( 7000000f1 )
Cybereasonmalicious.514627
SymantecML.Attribute.HighConfidence
Elasticmalicious (high confidence)
ESET-NOD32a variant of Win32/Downloader.Delf.E potentially unsafe
APEXMalicious
Paloaltogeneric.ml
BitDefenderGen:Variant.Fragtor.103425
NANO-AntivirusVirus.Win32.Gen.ccmw
AvastWin32:Malware-gen
TencentWin32.Trojan.Spy.Lnek
Ad-AwareGen:Variant.Fragtor.103425
EmsisoftGen:Variant.Fragtor.103425 (B)
ComodoMalware@#2p6osdtoyaesv
F-SecureTrojan.TR/Spy.Banker.Gen
DrWebBackDoor.Attack.1546
VIPREGen:Variant.Fragtor.103425
TrendMicroTROJ_GEN.R03BC0PFU22
McAfee-GW-EditionBehavesLike.Win32.Dropper.th
Trapminemalicious.high.ml.score
SophosGeneric ML PUA (PUA)
SentinelOneStatic AI – Malicious PE
GDataGen:Variant.Fragtor.103425
AviraTR/Spy.Banker.Gen
ArcabitTrojan.Fragtor.D19401
MicrosoftTrojan:Win32/Wacatac.B!ml
CynetMalicious (score: 100)
AhnLab-V3Malware/Win32.Generic.C2416312
McAfeeGenericRXEB-XF!AC3E6D30653D
MAXmalware (ai score=88)
VBA32Backdoor.Attack
MalwarebytesMalware.Heuristic.1001
TrendMicro-HouseCallTROJ_GEN.R03BC0PFU22
YandexTrojan.GenAsa!rADcSDt47iQ
IkarusTrojan.Spy.Banker
MaxSecureTrojan.Malware.300983.susgen
FortinetRiskware/Downloader_Delf
BitDefenderThetaGen:NN.ZelphiF.34742.nP0@aav8cLdO
AVGWin32:Malware-gen
CrowdStrikewin/malicious_confidence_70% (W)

How to remove Fragtor.103425?

Fragtor.103425 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment