What is "Fragtor.502785"? – Adware Reports

The Fragtor.502785 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Fragtor.502785 virus can do?

Sample contains Overlay data
The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid

How to determine Fragtor.502785?


File Info:
name: FF81CDD90C0ED0E3E714.mlw
path: /opt/CAPEv2/storage/binaries/106b4c24e95b359b08e763aa804562e175e647489fe3b56ce164e466d4cd9c5b
crc32: 82FACEF4
md5: ff81cdd90c0ed0e3e7144e5679dff89c
sha1: c9184f4eab826dcdb011eda8dccdade650f87898
sha256: 106b4c24e95b359b08e763aa804562e175e647489fe3b56ce164e466d4cd9c5b
sha512: ed279fa18fab3de7dec57a25c5a6c8ef840ec64fcd105c66501c73a60b1ef021f6a2836497fcce87c2bc60be72d0edfa06a62ce88c89b8edcf79df1949bfd02f
ssdeep: 384:vYC3WKdf3FAMmhdxSVZClzmmPeuaBU3losjuzZ6UwYRGZq07Ps+YOWqbWDcRk5y3:g0NNUuZ0ZPP3lLuzZPKqMseQYR8yR5
type: PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
tlsh: T1AEE2E9597E084CFBE960173880F7C77A2A7CF085D6234F63F210A7305B237A5259A26E
sha3_384: 4b58058e54170856028d33b9ebe668ccdbba7e5efa676f50ba5428a43a3a0a20e2466b78c3f440a9a48c2c7edbdc12c2
ep_bytes: 57565383ec108b5c24248b7424208b7c
timestamp: 2024-02-09 11:30:15

Version Info:
0: [No Data]

Fragtor.502785 also known as:

Cynet	Malicious (score: 100)
McAfee	GenericRXWN-OO!FF81CDD90C0E
Sangfor	Suspicious.Win32.Save.a
BitDefender	Gen:Variant.Fragtor.502785
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (high confidence)
ESET-NOD32	a variant of Win32/Agent_AGen.DDZ
MicroWorld-eScan	Gen:Variant.Fragtor.502785
Avast	Win32:TrojanX-gen [Trj]
Rising	Trojan.Agent!8.B1E (TFE:5:8vNVVGEUyxV)
Emsisoft	Gen:Variant.Fragtor.502785 (B)
DrWeb	BACKDOOR.Trojan
FireEye	Generic.mg.ff81cdd90c0ed0e3
MAX	malware (ai score=85)
Microsoft	Trojan:Win32/Wacatac.B!ml
GData	Gen:Variant.Fragtor.502785
Fortinet	W32/Agent.DDP!tr
BitDefenderTheta	Gen:NN.ZedlaF.36744.b46@aCax5Pk
AVG	Win32:TrojanX-gen [Trj]
DeepInstinct	MALICIOUS

How to remove Fragtor.502785?

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

File Info:

name: 4D28AEBD70A187876402.mlw
path: /opt/CAPEv2/storage/binaries/e0ccc77baa96dc249da02e96145a82715707bde5ef6f1147745c4358f14557ab
crc32: 1476EFAA
md5: 4d28aebd70a1878764028277e88eddec
sha1: 97280ce69ec166e2bc0ab50514d042d291085463
sha256: e0ccc77baa96dc249da02e96145a82715707bde5ef6f1147745c4358f14557ab
sha512: 260e41497c7c997cc46209f18975147c3176d50f2316f46913fa79a5eeadf1cfba3dfb553df178c9f725ab687107abc96387a801c6ae86dc29a5fc77d1c36cf5
ssdeep: 768:siLRJ58aGZ2qXzPP3lLuzZPKqMAFYW8UR5:siLRJ56BjPP3lLuBZMfWt
type: PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
tlsh: T136E2C8997E448CFBE961173C80E6C7762A7CF080C6234B77F654B7308A237A5205B26E
sha3_384: 33deaabb0eb9662d5229fcd4e00b9696567128f5928244419b1be034135e5fc7695d480e477d1e8b7d39a77a267eba19
ep_bytes: 57565383ec108b5c24248b7424208b7c
timestamp: 2024-02-09 11:30:42

Version Info:

0: [No Data]

What is “Fragtor.502785”?