Should I remove “Fugrafa.113215”?

Malware Removal

The Fugrafa.113215 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware - Review 2020

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
6-day free trial available.

What Fugrafa.113215 virus can do?

  • Injection (inter-process)
  • Injection (Process Hollowing)
  • Executable code extraction
  • Attempts to connect to a dead IP:Port (1 unique times)
  • Creates RWX memory
  • Performs some HTTP requests
  • The binary likely contains encrypted or compressed data.
  • Looks up the external IP address
  • Executed a process and injected code into it, probably while unpacking
  • Attempts to modify proxy settings

Related domains:

z.whorecord.xyz
a.tomx.xyz
api.ipify.org

How to determine Fugrafa.113215?


File Info:

crc32: A1CE2E08
md5: f6ec8c19ab9a697d4d814776b8994558
name: F6EC8C19AB9A697D4D814776B8994558.mlw
sha1: 01a8921fac84c993395319da1da3e8e798fa5d57
sha256: 0a05acba81358c991a65bec090a8d8be970ac43b60105736ae73ccc2ace00490
sha512: 1839c28ae78bde2b40b98309a819873298c468332c8a397af7e4e3bd5afbf107761b9b7653f98bc34a4311f0f20086e9acee0868a49c4fdfb1d2e5846d237bef
ssdeep: 6144:de7+66+IWTpDNKJIIAi5mqvqePPS7t+KYpzCL6W4OEIKydRhIdguMP:dM+6trRNKPAiQqvqoS7t+KYpk6W4kId
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:

0: [No Data]

Fugrafa.113215 also known as:

BkavW32.AIDetectGBM.malware.02
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Fugrafa.113215
CAT-QuickHealTrojanpws.Ficker
ALYacGen:Variant.Fugrafa.113215
CylanceUnsafe
SangforTrojan.Win32.Save.a
K7AntiVirusTrojan ( 0053605a1 )
BitDefenderGen:Variant.Fugrafa.113215
K7GWTrojan ( 0053605a1 )
Cybereasonmalicious.fac84c
BitDefenderThetaGen:NN.ZexaF.34574.xyW@aigomdji
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/Injector.DYZI
APEXMalicious
AvastWin32:MalwareX-gen [Trj]
KasperskyHEUR:Trojan-PSW.Win32.Ficker.gen
AlibabaTrojanPSW:Win32/Ficker.2116eeb0
NANO-AntivirusTrojan.Win32.Ficker.ilxsen
AegisLabTrojan.Win32.Ficker.i!c
TencentWin32.Trojan-qqpass.Qqrob.Efuq
Ad-AwareGen:Variant.Fugrafa.113215
EmsisoftGen:Variant.Fugrafa.113215 (B)
Comodo.UnclassifiedMalware@0
F-SecureTrojan.TR/Injector.uqwna
DrWebTrojan.PWS.Siggen2.61604
ZillyaTrojan.Injector.Win32.829389
TrendMicroTROJ_GEN.R002C0WBL21
McAfee-GW-EditionBehavesLike.Win32.Injector.fc
FireEyeGeneric.mg.f6ec8c19ab9a697d
SophosMal/Generic-S
SentinelOneStatic AI – Malicious PE
JiangminTrojan.PSW.Ficker.bx
AviraTR/Injector.uqwna
MAXmalware (ai score=84)
Antiy-AVLTrojan/Win32.Injector
KingsoftWin32.Heur.KVMH017.a.(kcloud)
MicrosoftTrojan:Win32/Tnega!ml
GridinsoftTrojan.Win32.Downloader.oa!s1
ArcabitTrojan.Fugrafa.D1BA3F
AhnLab-V3Malware/Gen.Reputation.C4339015
ZoneAlarmHEUR:Trojan-PSW.Win32.Ficker.gen
GDataGen:Variant.Fugrafa.113215
CynetMalicious (score: 100)
Acronissuspicious
McAfeeRDN/Generic PWS.y
VBA32BScope.Trojan.Inject
MalwarebytesTrojan.Injector
PandaTrj/GdSda.A
TrendMicro-HouseCallTROJ_GEN.R002C0WBL21
RisingTrojan.Injector!8.C4 (CLOUD)
IkarusTrojan.Win32.Krypt
eGambitUnsafe.AI_Score_99%
FortinetW32/GenKryptij.CRRJ!tr
AVGWin32:MalwareX-gen [Trj]
Paloaltogeneric.ml
CrowdStrikewin/malicious_confidence_100% (W)
Qihoo-360Win32/TrojanPSW.Generic.HwoCbZMA

How to remove Fugrafa.113215?

Fugrafa.113215 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

Leave a Comment