Malware

Fugrafa.216384 removal guide

Malware Removal

The Fugrafa.216384 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Fugrafa.216384 virus can do?

  • Presents an Authenticode digital signature
  • Authenticode signature is invalid
  • Anomalous binary characteristics
  • Binary compilation timestomping detected

How to determine Fugrafa.216384?



File Info:

name: D9DC552DA065BBBB5997.mlw
path: /opt/CAPEv2/storage/binaries/568eefbea5e1fb915e2b03bce949298d60df4364c26ab12e9351e5d5e9c8b300
crc32: 0A4FDB2D
md5: d9dc552da065bbbb59976d6299a465b0
sha1: 8677f99f1c95d4ee5795e845f730ae8da5c59fb5
sha256: 568eefbea5e1fb915e2b03bce949298d60df4364c26ab12e9351e5d5e9c8b300
sha512: f8b038f9b19b931c3d365bc8da5b5f16466ce726d07e475a4fb63abaa0fd8acea08962b27afb5110b6eeb31ab0bfe5521352012b1bc29a2dd2617a9c09b9fec5
ssdeep: 12288:LJ2lsMwl7WV76R6wqtk3rmNAx5j41T2bQ8VYR/mlgcxMGNTCWsTGQ4T:LJ2lwm6R6G7mN8gT2d+lmlPxDh
type: PE32+ executable (GUI) x86-64, for MS Windows
tlsh: T18F159D23BE74E4F2C17649300B65D745AB39B5700B11429BF3E8D6AD6E213C19F38E6A
sha3_384: 2640d28087f84a827626adf94fd4c7172fb268ad0d415e29b5557a76c228d21c2a22c08e8b17fb564f3f8b5eaf52fef2
ep_bytes: 40534883ec20488bd9e88a050000488b
timestamp: 2100-03-02 06:33:42


Version Info:

CompanyName: Microsoft Corporation
FileDescription: Client Server Runtime Process
FileVersion: 10.0.17134.1 (WinBuild.160101.0800)
InternalName: CSRSS.Exe
LegalCopyright: © Microsoft Corporation. All rights reserved.
OriginalFilename: CSRSS.Exe
ProductName: Microsoft® Windows® Operating System
ProductVersion: 10.0.17134.1
Translation: 0x0409 0x04b0

Fugrafa.216384 also known as:

LionicTrojan.Win32.Generic.4!c
Elasticmalicious (high confidence)
DrWebWin32.HLLW.Autoruner.547
MicroWorld-eScanGen:Variant.Fugrafa.216384
FireEyeGen:Variant.Fugrafa.216384
ALYacTrojan.GenericKD.38265083
CylanceUnsafe
SangforTrojan.Win32.Save.a
AlibabaVirus:Win32/Ipamor.fa99fc71
CyrenW64/Ipamor.CZ.gen!Eldorado
SymantecTrojan.Gen.MBT
Paloaltogeneric.ml
ClamAVWin.Malware.Fugrafa-9854337-0
BitDefenderGen:Variant.Fugrafa.216384
AvastWin32:VB-FBX
SophosGeneric ML PUA (PUA)
McAfee-GW-EditionBehavesLike.Win64.Generic.ch
IkarusTrojan.Dropper
AviraHEUR/AGEN.1143591
MAXmalware (ai score=83)
Antiy-AVLTrojan/Generic.ASBOL.C6BF
GridinsoftRansom.Win64.Sabsik.sa
MicrosoftTrojan:Win32/Sabsik.FL.B!ml
GDataGen:Variant.Fugrafa.216384
CynetMalicious (score: 100)
McAfeeArtemis!D9DC552DA065
MalwarebytesMalware.AI.3696146603
RisingWorm.VB!1.DA41 (CLASSIC)
SentinelOneStatic AI – Suspicious PE
MaxSecureTrojan.Malware.121218.susgen
FortinetW64/Bulz.6330!tr
AVGWin32:VB-FBX
CrowdStrikewin/malicious_confidence_80% (W)

How to remove Fugrafa.216384?

Fugrafa.216384 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment