Malware

Fugrafa.213388 removal guide

Malware Removal

The Fugrafa.213388 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Fugrafa.213388 virus can do?

  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • Presents an Authenticode digital signature
  • Dynamic (imported) function loading detected
  • Authenticode signature is invalid
  • Anomalous binary characteristics

How to determine Fugrafa.213388?



File Info:

name: 855E91F4AB5779C7F254.mlw
path: /opt/CAPEv2/storage/binaries/e1a1df4457cdc43971d5e7bcb7bdd6b1b09f6d90400cb2a929ad3e1e00adf3e1
crc32: 26FC6D53
md5: 855e91f4ab5779c7f254d6ccf757b256
sha1: a1e59ab1821f9c1bcdd72b523f9596e8d88e25b0
sha256: e1a1df4457cdc43971d5e7bcb7bdd6b1b09f6d90400cb2a929ad3e1e00adf3e1
sha512: b2fa55a7b16ce21003a6646a07b7ee9e6111a453f3e5dd9c6ec0e395a1b191a5f48cf5615aa2e0785939791b5ca31689b5ff22e4bfafc6f4fd2e19811efb4f49
ssdeep: 24576:tmXVavwIT8P/oXSaGFmXVavwIT8P/oXSaGR:tHvbTrrGFHvbTrrGR
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1E2858D0DFEA18D36E16202344476D36E57797E301B128997B394BB4AFA30FC0B939667
sha3_384: eb83f7a8307fdb3ab7590fccc30db7bf4dc1fe413821107812945ceb1d373f5a2567c25facbec7bb3e1646f66d83cd17
ep_bytes: e863060000e978feffffcccccccccccc
timestamp: 2021-02-24 21:27:00


Version Info:

CompanyName: Adobe Systems Incorporated
FileDescription: AcroTextExtractor
FileVersion: 21.1.20142.424128
LegalCopyright: Copyright 1984-2021 Adobe Systems Incorporated and its licensors. All rights reserved.
OriginalFilename: AcroTextExtractor.exe
ProductName: Adobe Acrobat text extractor for non-PDF files
ProductVersion: 21.1.20142.424128
Translation: 0x0409 0x04b0

Fugrafa.213388 also known as:

Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Fugrafa.213388
FireEyeGeneric.mg.855e91f4ab5779c7
ALYacGen:Variant.Fugrafa.213388
CylanceUnsafe
CrowdStrikewin/malicious_confidence_60% (W)
SymantecML.Attribute.HighConfidence
ClamAVWin.Dropper.Ipamor-9879264-0
BitDefenderGen:Variant.Fugrafa.213388
AvastWin32:Malware-gen
Ad-AwareGen:Variant.Fugrafa.213388
SophosGeneric ML PUA (PUA)
McAfee-GW-EditionBehavesLike.Win32.Generic.tm
EmsisoftGen:Variant.Fugrafa.213388 (B)
SentinelOneStatic AI – Suspicious PE
GDataWin32.Trojan.PSE.136NMWS
MicrosoftTrojan:Win32/Wacatac.B!ml
CynetMalicious (score: 100)
McAfeeArtemis!855E91F4AB57
MAXmalware (ai score=87)
VBA32Worm.VB
MalwarebytesMalware.AI.3696146603
TrendMicro-HouseCallTROJ_GEN.R03BH0CA522
RisingWorm.VB!1.DA41 (CLASSIC)
YandexTrojan.Agent!vGmSoUnC6tc
IkarusTrojan.Agent
FortinetW32/Fugrafa.A069!tr
AVGWin32:Malware-gen
MaxSecureTrojan.Malware.121218.susgen

How to remove Fugrafa.213388?

Fugrafa.213388 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment