Malware

Fugrafa.199518 (B) removal guide

Malware Removal

The Fugrafa.199518 (B) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Fugrafa.199518 (B) virus can do?

  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • Creates RWX memory
  • Dynamic (imported) function loading detected
  • Unconventionial language used in binary resources: Ukrainian
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid
  • Anomalous binary characteristics

How to determine Fugrafa.199518 (B)?



File Info:

name: D6380022EAE2750B4705.mlw
path: /opt/CAPEv2/storage/binaries/c1917207398b8310c74d254a592af9b50899d595966cd895e6244293b352062f
crc32: 508F91F7
md5: d6380022eae2750b47056538e8d87fef
sha1: 285620ec3ca7d66519600576e296e7f7b697d4c0
sha256: c1917207398b8310c74d254a592af9b50899d595966cd895e6244293b352062f
sha512: ccce71cbc876f2c121f61c1da3468d6f76eca1f071d5d9ea5e0142572c4a056e3aeba1904e1bef54e5fc69d784ae5c020f794e7484dd1ad25d582bbc129049ae
ssdeep: 12288:OifwqD87CMIXANl8xSjWMV7fYssugarwNaBj9J0as7QxH2/e5VEBpHRaJ4iv:Oil5wsxSjMPuc8Qa+g2qVeH
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T132257D32F6C0C437D5A22B79CC5BC1D55426BE242D38AC4779E92F0CAF7928279262D7
sha3_384: 6655c85650b97fcb69adf0bc82908b30886ebd91e269541f5f7dc1c97d6c7c970f4fd1aafb72abcb6848db24609b08f7
ep_bytes: 558becb9260000006a006a004975f951
timestamp: 1992-06-19 22:22:17


Version Info:

Comments: 
CompanyName: Click And Deploy (Pte. Ltd.)
FileDescription: AlertDispatcher Console
FileVersion: 8.104.890.0
InternalName: AlertDispatcher
LegalCopyright: Click And Deploy (Pte. Ltd.)
OriginalFilename: 
PrivateBuild: 
ProductName: AlertDispatcher
ProductVersion: 8.104.890.0
Translation: 0x4809 0x04b0

Fugrafa.199518 (B) also known as:

LionicTrojan.Win32.Fugrafa.4!c
MicroWorld-eScanGen:Variant.Fugrafa.199518
FireEyeGen:Variant.Fugrafa.199518
McAfeeArtemis!D6380022EAE2
SymantecTrojan.Gen.MBT
TrendMicro-HouseCallTROJ_GEN.R002H09KM21
BitDefenderGen:Variant.Fugrafa.199518
Ad-AwareGen:Variant.Fugrafa.199518
EmsisoftGen:Variant.Fugrafa.199518 (B)
McAfee-GW-EditionBehavesLike.Win32.Dropper.dh
GDataWin32.Trojan.PSE.1JV1WGA
GridinsoftRansom.Win32.Sabsik.sa
MicrosoftTrojan:Win32/Wacatac.B!ml
ALYacGen:Variant.Fugrafa.199518
MAXmalware (ai score=86)
VBA32BScope.Trojan.Sabsik.FL
MalwarebytesMalware.AI.463565452
APEXMalicious
FortinetW32/PossibleThreat
PandaTrj/Genetic.gen

How to remove Fugrafa.199518 (B)?

Fugrafa.199518 (B) removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment