Malware

How to remove “Fugrafa.15171”?

Malware Removal

The Fugrafa.15171 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Fugrafa.15171 virus can do?

  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • Dynamic (imported) function loading detected
  • Network anomalies occured during the analysis.
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX
  • Authenticode signature is invalid
  • Uses Windows utilities for basic functionality

How to determine Fugrafa.15171?



File Info:

name: 095F7A5AF89EF20D5B99.mlw
path: /opt/CAPEv2/storage/binaries/ff6185eb93e04d26d628f60803ae1403607f2801e4f1395bc941882e420e965f
crc32: F2F3DC22
md5: 095f7a5af89ef20d5b99a6812d49ff03
sha1: b2a52bfe10ea6ec6b387ccce6e9ea041ce4fd560
sha256: ff6185eb93e04d26d628f60803ae1403607f2801e4f1395bc941882e420e965f
sha512: 8927932039f6a005e7db216375d57bef69817294e7652fc5fee8dfaa797e8fec6a902e5a4b23b4a398f42527ed2d8b975591a75d63e8d3a887ea558b190ba20d
ssdeep: 196608:Ucte3AMvNOxJs9EXgX5Sv5YzsF03QQF73xJZsKtF7j8XomS0d4GNdyv1:dte3AMvNOjsie85/WQg73xbs4FAL3N81
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1B4B6338DBF53D5A4EA490AB95DA5C6C82FD5FCA2FD1983237098770F2CB214BDA53402
sha3_384: 4f7a4ded423b1f13737d5a6a2fa785bd3937816da316001d2765cad3acacc9c002c11001c2938cc5087d4ec804917534
ep_bytes: 60be00a041008dbe0070feff5783cdff
timestamp: 2019-02-05 11:56:20


Version Info:

0: [No Data]

Fugrafa.15171 also known as:

Elasticmalicious (moderate confidence)
MicroWorld-eScanGen:Variant.Fugrafa.15171
FireEyeGeneric.mg.095f7a5af89ef20d
McAfeeArtemis!095F7A5AF89E
CylanceUnsafe
SangforSuspicious.Win32.Save.a
K7AntiVirusRiskware ( 0040eff71 )
K7GWRiskware ( 0040eff71 )
CrowdStrikewin/malicious_confidence_60% (D)
SymantecML.Attribute.HighConfidence
ESET-NOD32Win32/Agent.TRA
APEXMalicious
BitDefenderGen:Variant.Fugrafa.15171
NANO-AntivirusTrojan.Win32.Ursu.fofwsy
AvastWin32:Malware-gen
Ad-AwareGen:Variant.Fugrafa.15171
EmsisoftGen:Variant.Fugrafa.15171 (B)
F-SecureHeuristic.HEUR/AGEN.1215243
DrWebBackDoor.Siggen2.2807
ZillyaTrojan.Agent.Win32.2812287
McAfee-GW-EditionBehavesLike.Win32.PUPXAX.vc
GDataGen:Variant.Fugrafa.15171
JiangminBackdoor.Zapchast.j
AviraHEUR/AGEN.1215243
ArcabitTrojan.Fugrafa.D3B43
ViRobotTrojan.Win32.Agent.142848.S[UPX]
MicrosoftProgram:Win32/Wacapew.C!ml
CynetMalicious (score: 100)
BitDefenderThetaGen:NN.ZexaF.34742.@pJfaSxRrPji
ALYacGen:Variant.Fugrafa.15171
MAXmalware (ai score=82)
VBA32BScope.Trojan.Occamy
MalwarebytesTrojan.Crypt.UPX
RisingTrojan.Agent!8.B1E (TFE:dGZlOgW8IbEwiLbKdA)
AVGWin32:Malware-gen
Cybereasonmalicious.af89ef

How to remove Fugrafa.15171?

Fugrafa.15171 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment