Malware

About “Fragtor.23876 (B)” infection

Malware Removal

The Fragtor.23876 (B) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware - Review 2020

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
6-day free trial available.

What Fragtor.23876 (B) virus can do?

  • Executable code extraction
  • Attempts to connect to a dead IP:Port (4 unique times)
  • Creates RWX memory
  • A process attempted to delay the analysis task.
  • HTTP traffic contains suspicious features which may be indicative of malware related traffic
  • Performs some HTTP requests
  • Unconventionial language used in binary resources: Saami
  • The binary likely contains encrypted or compressed data.
  • Collects information to fingerprint the system
  • Anomalous binary characteristics

Related domains:

telete.in
apps.identrust.com

How to determine Fragtor.23876 (B)?


File Info:

crc32: 8680BF6A
md5: 83ad66f0c7ace66b6f274e5a16362a89
name: 83AD66F0C7ACE66B6F274E5A16362A89.mlw
sha1: d1119884af2f0aa1274ad4043f2e4aedf071171d
sha256: 0c4edf8312e883334b9fa53c3404f74b84380ff885fa0ad63fe1b652d46241c8
sha512: d64d05ba50494acb45fac0c52d0d3816063463a11816c834abf473f36364ba1c695cee22679c7eda5b6ea38c9c64146a5492d654ca3eaffce15cc382a115cd94
ssdeep: 6144:I+VHeuQF24cL/ergCWoabpt1fmGQNF9sVn8EKG6trqKBdBBOMMpshh81z3lBUde:DxQF24cLivWXbwBfV5JB/up1z3lB4
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:

Translation: 0x1209 0x04b8

Fragtor.23876 (B) also known as:

Elasticmalicious (high confidence)
CAT-QuickHealRansom.Stop.Z5
ALYacGen:Variant.Fragtor.23876
CylanceUnsafe
SangforTrojan.Win32.Save.a
CrowdStrikewin/malicious_confidence_100% (D)
BitDefenderGen:Variant.Fragtor.23876
Cybereasonmalicious.4af2f0
CyrenW32/Kryptik.EYC.gen!Eldorado
SymantecML.Attribute.HighConfidence
APEXMalicious
CynetMalicious (score: 100)
MicroWorld-eScanGen:Variant.Fragtor.23876
Ad-AwareGen:Variant.Fragtor.23876
SophosML/PE-A
BitDefenderThetaGen:NN.ZexaF.34170.Gu0@aikgZDlO
McAfee-GW-EditionBehavesLike.Win32.Trojan.hc
FireEyeGeneric.mg.83ad66f0c7ace66b
EmsisoftGen:Variant.Fragtor.23876 (B)
SentinelOneStatic AI – Malicious PE
MicrosoftRansom:Win32/StopCrypt.MGK!MTB
ArcabitTrojan.Fragtor.D5D44
GDataGen:Variant.Fragtor.23876
Acronissuspicious
McAfeePacked-GDT!83AD66F0C7AC
MAXmalware (ai score=85)
VBA32Malware-Cryptor.Azorult.gen
RisingTrojan.Generic@ML.89 (RDML:a6CXIb2mQ06PackdtO3iBQ)
MaxSecureTrojan.Malware.300983.susgen
Paloaltogeneric.ml

How to remove Fragtor.23876 (B)?

Fragtor.23876 (B) removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment