Should I remove “Fugrafa.213424”?

The Fugrafa.213424 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Fugrafa.213424 virus can do?

SetUnhandledExceptionFilter detected (possible anti-debug)
Dynamic (imported) function loading detected
Presents an Authenticode digital signature
Authenticode signature is invalid
Anomalous binary characteristics

How to determine Fugrafa.213424?


File Info:
name: 6208DDFF4D24DD93C66F.mlw
path: /opt/CAPEv2/storage/binaries/465e8947795297de72559d03b77a14832a767e19f9845b7523ea669acb423ae5
crc32: 3DB6B4A3
md5: 6208ddff4d24dd93c66f945f766f7be4
sha1: 4e277820f87e4e7b409f81cedd7352b0eeee4c30
sha256: 465e8947795297de72559d03b77a14832a767e19f9845b7523ea669acb423ae5
sha512: 73123e2c251a7782bbce3db452c30d5ba1214dc8efb8a9baff283d9006e650bed3375fead5ec364acd250b6982045153c687b568d0430c74325bd67514f59eae
ssdeep: 12288:MvwszIIMNid5wwChvwsOvwszIIMNid5wwC5XAm3ggRUeMq9TYXvd0:MHX5dl86HX5dlHm3NCdCTYl0
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T1C4D4AF61B39088F5E86301358965D632DBB6BC3216B0C15F73E4362E1F733916D39BAA
sha3_384: 2b8aa0c8e02cb726508caa5a69496f8ae7a5d711bf19b745e2cc23f06f519c1b9d2b4f7523495f367bc7ee8287b39446
ep_bytes: e8a5060000e974feffff558beceb0dff
timestamp: 2020-12-09 13:07:56

Version Info:
Comments: Java Access Bridge
CompanyName: Oracle Corporation
FileDescription: Java(TM) Platform SE binary
FileVersion: 8.0.2810.9
Full Version: 1.8.0_281-b09
InternalName: jabswitch
LegalCopyright: Copyright © 2020
OriginalFilename: jabswitch.exe
ProductName: Java(TM) Platform SE 8
ProductVersion: 8.0.2810.9
Translation: 0x0409 0x04b0

Fugrafa.213424 also known as:

Bkav	W32.AIDetect.malware2
Elastic	malicious (high confidence)
DrWeb	Win32.HLLW.Autoruner.547
MicroWorld-eScan	Gen:Variant.Fugrafa.213424
FireEye	Gen:Variant.Fugrafa.213424
ALYac	Gen:Variant.Fugrafa.213424
Cylance	Unsafe
Sangfor	Virus.Win32.Save.a
Cyren	W32/Bulz.CK.gen!Eldorado
Symantec	ML.Attribute.HighConfidence
APEX	Malicious
ClamAV	Win.Worm.Vindor-9886047-0
BitDefender	Gen:Variant.Fugrafa.213424
Avast	Win32:VB-FBX
Ad-Aware	Gen:Variant.Fugrafa.213424
Sophos	ML/PE-A
McAfee-GW-Edition	BehavesLike.Win32.Generic.jh
Emsisoft	Gen:Variant.Fugrafa.213424 (B)
Ikarus	Virus.Win32.Enil
GData	Gen:Variant.Fugrafa.213424
Microsoft	Trojan:Win32/Wacatac.B!ml
Cynet	Malicious (score: 100)
McAfee	RDN/Generic.dx
MAX	malware (ai score=85)
VBA32	Trojan.Sdum
Malwarebytes	Malware.AI.3696146603
Yandex	Worm.AutoRun!BbfwjOHyDSE
SentinelOne	Static AI – Suspicious PE
Fortinet	W32/Agent.873F!tr
AVG	Win32:VB-FBX

How to remove Fugrafa.213424?

Fugrafa.213424 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X