Malware

Fragtor.119485 (file analysis)

Malware Removal

The Fragtor.119485 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Fragtor.119485 virus can do?

  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • Possible date expiration check, exits too soon after checking local time
  • Dynamic (imported) function loading detected
  • Starts servers listening on 127.0.0.1:0
  • A process created a hidden window
  • Authenticode signature is invalid
  • Created a process from a suspicious location

How to determine Fragtor.119485?



File Info:

name: 706547B2795687AA1E85.mlw
path: /opt/CAPEv2/storage/binaries/f0fbd78cba67199a058b8b84252352d8b2788ae69514bea6d2511d8d5e104e55
crc32: 6224DA04
md5: 706547b2795687aa1e85e62b903c7b53
sha1: 85967cc76a7aca4953f6a08a2bc9777998c5b382
sha256: f0fbd78cba67199a058b8b84252352d8b2788ae69514bea6d2511d8d5e104e55
sha512: 012264879a90bc6fc397de2af71fb15e494cf545a93576d6e8982ccd471cc108b131ff5f2e672c0c0987f90c42206f2b9a9816b274a865aebba5358d271b3660
ssdeep: 49152:/qLyoZAOw0vSME/Y0umOVejsh/yKoxXuXQt:/qLyz0vSutKmXQt
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1A8855B79FB4751F0EA2396B1814FEB7F8B2479158421EEBBFF4ACA14F4335122819252
sha3_384: 85f2fe34a3c36cb919b880ab3d3c6cd702eaca69a4092c7a7da76dd20c547ef044d3112036f4957075a95c0a3c751a23
ep_bytes: c705b0615b0001000000e9b1fcffff90
timestamp: 2022-07-27 20:45:27


Version Info:

0: [No Data]

Fragtor.119485 also known as:

MicroWorld-eScanGen:Variant.Fragtor.119485
ALYacGen:Variant.Fragtor.119485
CylanceUnsafe
VIPREGen:Variant.Fragtor.119485
SymantecML.Attribute.HighConfidence
Elasticmalicious (moderate confidence)
ESET-NOD32a variant of Win32/GenKryptik.FXTJ
KasperskyTrojan.Win32.Bingoml.fqew
BitDefenderGen:Variant.Fragtor.119485
AvastWin32:MalOb-IJ [Cryp]
Ad-AwareGen:Variant.Fragtor.119485
EmsisoftGen:Variant.Fragtor.119485 (B)
McAfee-GW-EditionArtemis!Trojan
FireEyeGen:Variant.Fragtor.119485
GDataGen:Variant.Fragtor.119485
ArcabitTrojan.Fragtor.D1D2BD
MicrosoftTrojan:Win32/Wacatac.B!ml
AhnLab-V3Trojan/Win.Generic.C5212540
McAfeeGenericRXTS-CN!706547B27956
MAXmalware (ai score=85)
VBA32BScope.TrojanPSW.RedLine
MalwarebytesMalware.AI.3773873058
IkarusTrojan-Dropper.Win32.Agent
BitDefenderThetaGen:NN.ZexaF.34806.WPW@a4IXCCji
AVGWin32:MalOb-IJ [Cryp]

How to remove Fragtor.119485?

Fragtor.119485 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment