Malware

About “Fragtor.187273” infection

Malware Removal

The Fragtor.187273 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Fragtor.187273 virus can do?

  • Executed a command line with /C or /R argument to terminate command shell on completion which can be used to hide execution
  • Reads data out of its own binary image
  • Drops a binary and executes it
  • Authenticode signature is invalid
  • A ping command was executed with the -n argument possibly to delay analysis
  • Uses Windows utilities for basic functionality
  • Deletes executed files from disk
  • Uses suspicious command line tools or Windows utilities

How to determine Fragtor.187273?



File Info:

name: CB0B5FE5FB5B19A519ED.mlw
path: /opt/CAPEv2/storage/binaries/1d7ee4a6f36dcff39f25f7dd033528dee5bfb475add8687c655580c31d58de1f
crc32: 9E982695
md5: cb0b5fe5fb5b19a519ed4c95324bcf56
sha1: 400a2764d0680dc5f6146dfdc3425869d7bbd1f9
sha256: 1d7ee4a6f36dcff39f25f7dd033528dee5bfb475add8687c655580c31d58de1f
sha512: 5e62ceb0a4b5aefb72228885b29b59fd2a337cc0f166ca4b2aaf615b58414b5e3fec96bb3a3d5529777716d02d35981e088fe0ab5b55858831414e98298206b2
ssdeep: 768:0kyKvBAkbVKU9xjXvKBBW5bD1pwfR4xcPQUjixZrv:0kfKUDjSBBWHpwp4xcPd2v
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T1B8C28C43F6E4B862CFC046F127F695B4C2BF3C305EA195665BA3ED5A14A8840EB0974F
sha3_384: bb3d358387ad34c9e01939ebcef5843396f8f696ec5fe9211dd2a1471bf8a83b03316a1e75c9d44441908b0c8b1bd065
ep_bytes: e8b1020000e974feffff558becff7508
timestamp: 2020-12-13 23:46:04


Version Info:

0: [No Data]

Fragtor.187273 also known as:

LionicTrojan.Win32.SelfDel.4!c
MicroWorld-eScanGen:Variant.Fragtor.187273
ClamAVWin.Malware.Fugrafa-9950512-0
FireEyeGeneric.mg.cb0b5fe5fb5b19a5
CAT-QuickHealTrojan.Stealer.S28360516
ALYacGen:Variant.Fragtor.187273
Cylanceunsafe
SangforSuspicious.Win32.Save.a
K7AntiVirusPassword-Stealer ( 005937271 )
AlibabaTrojanPSW:Win32/Fragtor.debe34bc
K7GWPassword-Stealer ( 005937271 )
CrowdStrikewin/malicious_confidence_100% (W)
CyrenW32/Agent.ENB.gen!Eldorado
SymantecML.Attribute.HighConfidence
Elasticmalicious (high confidence)
ESET-NOD32a variant of Win32/PSW.Agent.OOO
APEXMalicious
Paloaltogeneric.ml
CynetMalicious (score: 100)
KasperskyHEUR:Trojan.Win32.SelfDel.pef
BitDefenderGen:Variant.Fragtor.187273
NANO-AntivirusTrojan.Win32.SelfDel.jpepdv
SUPERAntiSpywareTrojan.Agent/Gen-Stealer
AvastWin32:Malware-gen
TencentTrojan.Win32.Selfdel.xb
TACHYONTrojan/W32.Fugrafa.26112
EmsisoftGen:Variant.Fragtor.187273 (B)
F-SecureHeuristic.HEUR/AGEN.1316128
DrWebTrojan.MulDrop20.10627
VIPREGen:Variant.Fragtor.187273
TrendMicroTROJ_GEN.R002C0DLT22
McAfee-GW-EditionBehavesLike.Win32.Generic.mh
SophosTroj/PWS-CMJ
SentinelOneStatic AI – Suspicious PE
GDataGen:Variant.Fragtor.187273
JiangminTrojan.Selfdel.rft
AviraHEUR/AGEN.1316128
Antiy-AVLGrayWare/Win32.SelfDef.a
ArcabitTrojan.Fragtor.D2DB89
ZoneAlarmHEUR:Trojan.Win32.SelfDel.pef
MicrosoftTrojan:Win32/Fragtor.EL!MTB
GoogleDetected
AhnLab-V3Malware/Win.Reputation.R496203
Acronissuspicious
McAfeeGenericRXNV-VM!CB0B5FE5FB5B
MAXmalware (ai score=86)
VBA32BScope.Trojan.Occamy
MalwarebytesMalware.AI.3910449943
PandaTrj/Genetic.gen
TrendMicro-HouseCallTROJ_GEN.R002C0DLT22
RisingStealer.Agent!1.DE3E (CLASSIC)
IkarusTrojan.DelFiles
MaxSecureTrojan.Malware.121218.susgen
FortinetW32/SelfDef.26C0!tr
AVGWin32:Malware-gen
DeepInstinctMALICIOUS

How to remove Fragtor.187273?

Fragtor.187273 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment