Malware

Fragtor.37405 malicious file

Malware Removal

The Fragtor.37405 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Fragtor.37405 virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • Creates RWX memory
  • Dynamic (imported) function loading detected
  • Reads data out of its own binary image
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • CAPE detected the EnigmaStub malware family
  • Anomalous binary characteristics

How to determine Fragtor.37405?



File Info:

name: E9F75921AB19ABCB834A.mlw
path: /opt/CAPEv2/storage/binaries/49e56df03863d312ab06aa931326dee02e440b3f9dbc43281ec3886b06473ad5
crc32: 71870745
md5: e9f75921ab19abcb834af40728db5dcb
sha1: 00a6aa1ef27fb98d4da74351d88775eb0863ad07
sha256: 49e56df03863d312ab06aa931326dee02e440b3f9dbc43281ec3886b06473ad5
sha512: 040dba0896e8f277fe24c46348c8677f510e1e299c8bf493db798eeb4e0f4b0437aa72dc32fa112c156154d03d81ff6438155993a53b9f73e4fa45d516b7c97e
ssdeep: 24576:Wkl6Zv2/O76ZaWuknSHDcxrtOM194kxACrN12EHE2eMcfh+:dlf28LLLB34wh/2ljlp
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1C915330F1EA72B29D9E8B9F23C7989F16C04FE068D2C8F196104C3944572BB9D64D6E7
sha3_384: 3ea39cd52d5125862edc00eef65fd517236b7777a6f672e875d00b75155bb31fac2893b68a55b7ba3f98b4e26313aa9c
ep_bytes: 558bec83c4f0b800104000e801000000
timestamp: 2012-10-05 06:41:13


Version Info:

Translation: 0x0409 0x04b0
CompanyName: ccc
ProductName: Project1
FileVersion: 1.00
ProductVersion: 1.00
InternalName: Project1
OriginalFilename: Project1.exe

Fragtor.37405 also known as:

BkavW32.AIDetect.malware1
LionicTrojan.Win32.PEF13C.4!c
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Fragtor.37405
FireEyeGeneric.mg.e9f75921ab19abcb
ALYacGen:Variant.Fragtor.37405
CylanceUnsafe
ZillyaTrojan.PEF13C.Win32.872
SangforTrojan.Win32.Save.a
K7AntiVirusTrojan ( 0055e39b1 )
AlibabaPacked:Win32/EnigmaProtector.4e898c68
K7GWTrojan ( 0055e39b1 )
Cybereasonmalicious.1ab19a
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/Packed.EnigmaProtector.L suspicious
APEXMalicious
Paloaltogeneric.ml
ClamAVWin.Packed.Enigma-9838336-0
KasperskyUDS:DangerousObject.Multi.Generic
BitDefenderGen:Variant.Fragtor.37405
NANO-AntivirusTrojan.Win32.PEF13C.cyuxou
AvastWin32:Malware-gen
TencentWin32.Trojan.Crypt.Aojf
Ad-AwareGen:Variant.Fragtor.37405
SophosGeneric PUA AA (PUA)
ComodoMalware@#1m2fqaa6ntzte
VIPREBackdoor.Graybird
McAfee-GW-EditionBehavesLike.Win32.Generic.cc
EmsisoftGen:Variant.Fragtor.37405 (B)
SentinelOneStatic AI – Malicious PE
GDataGen:Variant.Fragtor.37405
WebrootW32.Malware.Gen
AviraTR/Crypt.XPACK.Gen
Antiy-AVLTrojan/Generic.ASBOL.C669
KingsoftWin32.Troj.Generic.a.(kcloud)
MicrosoftTrojan:Win32/Wacatac.B!ml
CynetMalicious (score: 100)
Acronissuspicious
McAfeeArtemis!E9F75921AB19
MAXmalware (ai score=89)
RisingTrojan.Win32.Generic.1599F2AA (C64:YzY0Oqi6zdhFjF3H)
YandexTrojan.GenAsa!OxlAe1kj8dQ
eGambitUnsafe.AI_Score_99%
FortinetPossibleThreat
BitDefenderThetaAI:Packer.F1B8D15E20
AVGWin32:Malware-gen
PandaTrj/CI.A
CrowdStrikewin/malicious_confidence_90% (W)

How to remove Fragtor.37405?

Fragtor.37405 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment