Fugrafa.184779 (file analysis)

The Fugrafa.184779 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Fugrafa.184779 virus can do?

Unconventionial language used in binary resources: Chinese (Simplified)
The binary likely contains encrypted or compressed data.
Authenticode signature is invalid
Anomalous binary characteristics

How to determine Fugrafa.184779?


File Info:
name: C98830B5CD2F65EA1166.mlw
path: /opt/CAPEv2/storage/binaries/af5ba8732ba53f3f7842254387005e4f5e890abfa7afa4c9231febb53b6d02bb
crc32: 73612437
md5: c98830b5cd2f65ea116684f90a81b554
sha1: bc7c59a0e56517ce9dc9ca495775e51f0713b62f
sha256: af5ba8732ba53f3f7842254387005e4f5e890abfa7afa4c9231febb53b6d02bb
sha512: 7635338270b9baa16283558980a84544e8e91ec298533f420a855d51d136cc93233068fc2d998a397a38390e745278f4e9208294b682d7eddb0cfdbc5aca3fdd
ssdeep: 98304:h8sjknEVLliRMT0/IHA9lTglHngJFngNUaGPw1tydZ3vIMqpUciluKH:HjsEhyMTXUlUNQRgNqktw56pUciT
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1C54612226FFD9350CE668132FE6962056E776C214630F85B2ED83D286A73163172F763
sha3_384: f25fc6898bfe65c93f105fda93e2463b380dc05d6e72af213f29f0cb474b43e175d3b2b7d4172bf2bdddabbc365505b9
ep_bytes: e8b8d00000e97ffeffffcccccccccccc
timestamp: 2021-08-29 15:40:04

Version Info:
0: [No Data]

Fugrafa.184779 also known as:

Bkav	W32.AIDetect.malware1
Elastic	malicious (high confidence)
FireEye	Generic.mg.c98830b5cd2f65ea
Cyren	W32/Application.YRJO-3887
ESET-NOD32	a variant of Win32/HackKMS.BF potentially unsafe
APEX	Malicious
ClamAV	Win.Tool.Productkey-14
Kaspersky	HEUR:HackTool.Win32.KMSAuto.gen
BitDefender	Gen:Variant.Fugrafa.184779
NANO-Antivirus	Trojan.Win32.Ool.dcuxet
Avast	Win32:PUP-gen [PUP]
Emsisoft	Gen:Variant.Fugrafa.184779 (B)
McAfee-GW-Edition	BehavesLike.Win32.Generic.tc
Sophos	NirSoft ProduKey (PUA)
GData	Application.Hacktool.KMSActivator.IV
ZoneAlarm	HEUR:HackTool.Win32.KMSAuto.gen
Microsoft	Trojan:Win32/Sabsik.TE.B!ml
Cynet	Malicious (score: 100)
AhnLab-V3	Trojan/AU3.AutoInj.S1107
ALYac	Application.Hacktool.KMSActivator.IV
MAX	malware (ai score=84)
VBA32	Trojan.Autoit.Banker
Rising	Trojan.Win32.Generic.1A45514A (CLOUD)
Ikarus	Trojan.Dropper
Fortinet	Riskware/KMSAuto
AVG	Win32:PUP-gen [PUP]
Cybereason	malicious.5cd2f6

How to remove Fugrafa.184779?

Fugrafa.184779 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X