Malware

Fragtor.106508 removal

Malware Removal

The Fragtor.106508 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Fragtor.106508 virus can do?

  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • Executed a command line with /C or /R argument to terminate command shell on completion which can be used to hide execution
  • Dynamic (imported) function loading detected
  • Network anomalies occured during the analysis.
  • Reads data out of its own binary image
  • A process created a hidden window
  • Drops a binary and executes it
  • Authenticode signature is invalid
  • A ping command was executed with the -n argument possibly to delay analysis
  • Uses Windows utilities for basic functionality
  • Created a process from a suspicious location
  • Uses suspicious command line tools or Windows utilities

How to determine Fragtor.106508?



File Info:

name: 75B9EF229C85C370AB57.mlw
path: /opt/CAPEv2/storage/binaries/0dafc41a1c8ec9f7a3da6646c28b804b43099ff82a4f30e89e59e460ca0a30a4
crc32: CE0249C1
md5: 75b9ef229c85c370ab570e1ea1072060
sha1: 84fc07525b69cbbbbb6aa502a037e89a7ad58529
sha256: 0dafc41a1c8ec9f7a3da6646c28b804b43099ff82a4f30e89e59e460ca0a30a4
sha512: e0a4a0d172aa1ce99a33afb1994e1e11018283d061c945b726b41408d0223753b680a4361bec30fbb7101d21ed9dbc34520178dfea78b3bfb1e38f328a3b46f7
ssdeep: 384:wW25aIOUx9eJED09RXjXz7XjCWwqK8Wzz8WW5bIwHTZL+BEAvxAx3mdDJbi:vga+b2EI9xjXvKBBW5bYlMX
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T1F9C27DF7FBE088F1C7510AB151B619B482BFB0602F6746C59F20F5161AF54A0F92A58B
sha3_384: 24414385301a265b39dd50f9421fc8910286e7b288580bd96502fa3a5c5b8b39f2cb598b903373a83fbe62f98f31c655
ep_bytes: e8b1020000e974feffff558becff7508
timestamp: 2020-12-13 23:46:04


Version Info:

0: [No Data]

Fragtor.106508 also known as:

BkavW32.AIDetect.malware2
LionicTrojan.Win32.SelfDel.4!c
Elasticmalicious (high confidence)
ClamAVWin.Malware.Fugrafa-9950512-0
FireEyeGeneric.mg.75b9ef229c85c370
McAfeeGenericRXNV-VM!75B9EF229C85
CylanceUnsafe
VIPREGen:Variant.Fragtor.106508
SangforInfostealer.Win32.Agent.Vp8y
K7AntiVirusPassword-Stealer ( 005937271 )
BitDefenderGen:Variant.Fragtor.106508
K7GWPassword-Stealer ( 005937271 )
Cybereasonmalicious.29c85c
ArcabitTrojan.Fragtor.D1A00C
CyrenW32/Agent.ENB.gen!Eldorado
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/PSW.Agent.OOO
TrendMicro-HouseCallTROJ_GEN.R002C0PG222
Paloaltogeneric.ml
CynetMalicious (score: 100)
KasperskyHEUR:Trojan.Win32.SelfDel.vho
AlibabaTrojanPSW:Win32/SelfDel.a10d96b1
NANO-AntivirusTrojan.Win32.SelfDel.jpepdv
MicroWorld-eScanGen:Variant.Fragtor.106508
TencentTrojan.Win32.Selfdel.xb
Ad-AwareGen:Variant.Fragtor.106508
EmsisoftGen:Variant.Fragtor.106508 (B)
DrWebTrojan.MulDrop20.10627
ZillyaTrojan.SelfDel.Win32.65008
TrendMicroTROJ_GEN.R002C0PG222
McAfee-GW-EditionBehavesLike.Win32.Generic.mh
SentinelOneStatic AI – Suspicious PE
SophosTroj/PWS-CMJ
APEXMalicious
JiangminTrojan.Selfdel.rft
AviraHEUR/AGEN.1234650
MicrosoftTrojan:Win32/Tiggre!rfn
GDataGen:Variant.Fragtor.106508
TACHYONTrojan/W32.Fugrafa.26112
AhnLab-V3Malware/Win.Reputation.R496203
Acronissuspicious
VBA32BScope.Trojan.Occamy
ALYacGen:Variant.Fragtor.106508
MAXmalware (ai score=82)
MalwarebytesMalware.AI.2397151589
PandaTrj/Genetic.gen
RisingStealer.Agent!1.DE3E (CLASSIC)
IkarusTrojan.DelFiles
MaxSecureTrojan.Malware.121218.susgen
FortinetW32/SelfDef.26C0!tr
AVGWin32:Malware-gen
AvastWin32:Malware-gen
CrowdStrikewin/malicious_confidence_100% (W)

How to remove Fragtor.106508?

Fragtor.106508 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment