Should I remove “Fragtor.99865”?

The Fragtor.99865 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Fragtor.99865 virus can do?

A process attempted to delay the analysis task.
Dynamic (imported) function loading detected
The binary likely contains encrypted or compressed data.
Authenticode signature is invalid

How to determine Fragtor.99865?


File Info:
name: 97DF38C16BFE5B3B0EC9.mlw
path: /opt/CAPEv2/storage/binaries/fbd55e0cae05d566b5d1806e0f5b1bfc63aa0c579947ccd6e7af17decd9dee62
crc32: 1CD852B2
md5: 97df38c16bfe5b3b0ec9bd9a4bce4be2
sha1: 84dcdfc25951994229ad07fc58d9f9f200caa43f
sha256: fbd55e0cae05d566b5d1806e0f5b1bfc63aa0c579947ccd6e7af17decd9dee62
sha512: 723f9e879f0206f163473e81da1495d0e8b28b2dd8b5679c4c602ecc32a82ddbbc65045ff7c01edfdf513ecaf6dfd1fb4ec1cb06fe59a031a7ab8149498e9b2c
ssdeep: 6144:kRALIdDMRMbZ8UMaXSFUC60qwnvVpiyN90OER:kai0fU/SqnD4Oy90B
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1F5441217B75085B4D5F84771206F4B9A0292BD79B615CD3236E8FA2B7D33607A283B32
sha3_384: e3b6351760619e4a463601ccd3b463282fdda34e7977db10d049873c8c09057d85356be2c5272f9101488f137913779f
ep_bytes: 60be00f044008dbe0020fbff5783cdff
timestamp: 2013-10-14 05:50:27

Version Info:
CompanyName: Microsoft Corporation
FileDescription: Win32 Cabinet Self-Extractor                                           
FileVersion: 11.00.9600.16428 (winblue_gdr.131013-1700)
InternalName: Wextract                
LegalCopyright: © Microsoft Corporation. All rights reserved.
OriginalFilename: WEXTRACT.EXE            .MUI
ProductName: Internet Explorer
ProductVersion: 11.00.9600.16428
Translation: 0x0409 0x04b0

Fragtor.99865 also known as:

Elastic	malicious (high confidence)
DrWeb	BAT.Obfuscated.1
MicroWorld-eScan	Gen:Variant.Fragtor.99865
FireEye	Generic.mg.97df38c16bfe5b3b
ALYac	Gen:Variant.Fragtor.99865
Cylance	Unsafe
Sangfor	Suspicious.Win32.Save.a
K7AntiVirus	Trojan ( 00537fd01 )
K7GW	Trojan ( 00537fd01 )
CrowdStrike	win/malicious_confidence_70% (W)
tehtris	Generic.Malware
ESET-NOD32	PowerShell/TrojanDownloader.Agent.ASX
APEX	Malicious
Avast	Win32:Trojan-gen
Kaspersky	UDS:Trojan.Win32.Vucha.dc
BitDefender	Gen:Variant.Fragtor.99865
Ad-Aware	Gen:Variant.Fragtor.99865
Emsisoft	Gen:Variant.Babar.66840 (B)
Comodo	Packed.Win32.MUPX.Gen@24tbus
McAfee-GW-Edition	BehavesLike.Win32.Virut.dc
Trapmine	malicious.moderate.ml.score
Sophos	Mal/Generic-S
GData	Win32.Trojan.Agent.6JDNWB
Avira	TR/Dldr.Agent.qsspz
Microsoft	Trojan:Win32/Wacatac.B!ml
Cynet	Malicious (score: 100)
AhnLab-V3	Downloader/Win.Gendwnurl.R495517
McAfee	Artemis!97DF38C16BFE
MAX	malware (ai score=89)
VBA32	BScope.Trojan.Agent
Malwarebytes	Malware.Heuristic.1003
Rising	Trojan.Wacatac!8.10C01 (TFE:dGZlOgS101RFH7NyKg)
Ikarus	Trojan.Win32.Midgare
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	BAT/Agent.ASO!tr.dldr
AVG	Win32:Trojan-gen
Panda	Trj/CI.A

How to remove Fragtor.99865?

Fragtor.99865 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X