Malware

Fragtor.503138 removal guide

Malware Removal

The Fragtor.503138 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
6-day free trial available.

What Fragtor.503138 virus can do?

  • Sample contains Overlay data
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid
  • Installs itself for autorun at Windows startup

How to determine Fragtor.503138?


File Info:

name: 3A8EA49A3B7E80E9B24B.mlw
path: /opt/CAPEv2/storage/binaries/dbe94e54a3a7205dfbb71027bf26acd6fb8594f80a612123fd49a5057b05f1bb
crc32: 75AE599B
md5: 3a8ea49a3b7e80e9b24b6c39039621cf
sha1: 2e8cd9677b7f4be2dc3f7254abca71f8478df713
sha256: dbe94e54a3a7205dfbb71027bf26acd6fb8594f80a612123fd49a5057b05f1bb
sha512: dfdd1ffe774b19f6859ce9807cf313f52d51fa883a3aed0bfbca1979144e29d347b335b05d8f9fd632780f88b8ce53b768ea7fc4b8eab253ff247f7d1843c396
ssdeep: 768:W76vt2sdmZ22eqPP3lLuzZPKq0kRYgI5Ri:W76vGhtPP3lLuBZ0dgJ
type: PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
tlsh: T1A2E2B6997F444CEBE550173984E7C7BA2A7DF081CA234B66F650A7308B337A1215B26F
sha3_384: 650bf1577467a0e7db8f68e089e26fa1c70e5f3dee88176f874f9c048b2ce53a1c6461f137703f1e37f46fa83158cddb
ep_bytes: 57565383ec108b5c24248b7424208b7c
timestamp: 2024-02-09 01:55:45

Version Info:

0: [No Data]

Fragtor.503138 also known as:

MicroWorld-eScanGen:Variant.Fragtor.503138
FireEyeGen:Variant.Fragtor.503138
SkyhighBehavesLike.Win32.Injector.nm
Cylanceunsafe
SangforSuspicious.Win32.Save.a
CrowdStrikewin/malicious_confidence_100% (W)
ArcabitTrojan.Fragtor.D7AD62
SymantecML.Attribute.HighConfidence
Elasticmalicious (high confidence)
ESET-NOD32a variant of Win32/Agent_AGen.DDZ
CynetMalicious (score: 100)
BitDefenderGen:Variant.Fragtor.503138
AvastWin32:TrojanX-gen [Trj]
RisingTrojan.Agent!8.B1E (TFE:5:eMpmhI2O2wP)
EmsisoftGen:Variant.Fragtor.503138 (B)
F-SecureTrojan.TR/Agent_AGen.sfqke
VIPREGen:Variant.Fragtor.503138
SentinelOneStatic AI – Suspicious PE
GoogleDetected
AviraTR/Agent_AGen.sfqke
Antiy-AVLTrojan/Win32.Wacatac
MicrosoftTrojan:Win32/Wacatac.B!ml
GDataGen:Variant.Fragtor.503138
AhnLab-V3Trojan/Win.Generic.R634642
McAfeeGenericRXWN-OT!3A8EA49A3B7E
MAXmalware (ai score=81)
IkarusTrojan.Win32.Agent
FortinetW32/Agent_AGen.DDZ!tr
BitDefenderThetaGen:NN.ZedlaF.36744.c46@a0dDDQh
AVGWin32:TrojanX-gen [Trj]
DeepInstinctMALICIOUS

How to remove Fragtor.503138?

Fragtor.503138 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment