Malware

Fugrafa.3794 removal instruction

Malware Removal

The Fugrafa.3794 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware - Review 2020

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
6-day free trial available.

What Fugrafa.3794 virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • Creates RWX memory
  • Dynamic (imported) function loading detected
  • CAPE extracted potentially suspicious content
  • Authenticode signature is invalid

How to determine Fugrafa.3794?


File Info:

name: 759B057448C7BE477794.mlw
path: /opt/CAPEv2/storage/binaries/851cbb4cb51f5e023b948fa929c9ba16af437d88e9f89d594860ab07186f8f9b
crc32: A7416D7E
md5: 759b057448c7be47779468e47423936d
sha1: 15d548a03d578f9db91cf8e53e81101bee257384
sha256: 851cbb4cb51f5e023b948fa929c9ba16af437d88e9f89d594860ab07186f8f9b
sha512: 19d32928215a420d658e6f248d6d623b53bbe71e2e1d69c777d94bf6ec455783899bd3b82aa44612a1a82a8b4eb0041e2093171ca062b020e7568e8213095605
ssdeep: 3072:ATb0gTbnGZ7/d5bpnsDbphOg8JaTK8zZa4f1mTLr2LkNq1x:rSGZ7HIX8JaTKsZa4f7
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T13814D7957355D4A7D5B718B9DC29A9F830A7BC59C4A8F20F2C923E0A71F2343107AE1B
sha3_384: 2a99cea5cf2190499c2e1238a62ac57f44f80e9c95d3297ae02e554250e2fd994830687f7209d3f679d089f788b70395
ep_bytes: 6003f833cb412bfe4f23f903d80bfb6a
timestamp: 2018-05-09 13:54:24

Version Info:

0: [No Data]

Fugrafa.3794 also known as:

BkavW32.AIDetect.malware2
LionicTrojan.Win32.FFRat.m!c
tehtrisGeneric.Malware
MicroWorld-eScanGen:Variant.Fugrafa.3794
FireEyeGeneric.mg.759b057448c7be47
McAfeeTrojan-FPPZ!759B057448C7
CylanceUnsafe
SangforTrojan.Win32.Save.a
K7AntiVirusTrojan ( 004fd41d1 )
AlibabaBackdoor:Win32/FFRat.5eb5fb37
K7GWTrojan ( 004fd41d1 )
Cybereasonmalicious.448c7b
VirITTrojan.Win32.Spy.BEYM
Elasticmalicious (high confidence)
ESET-NOD32Win32/Agent.SVO
APEXMalicious
Paloaltogeneric.ml
KasperskyHEUR:Backdoor.Win32.FFRat.gen
BitDefenderGen:Variant.Fugrafa.3794
NANO-AntivirusTrojan.Win32.Dimnie.fbswyq
AvastWin32:Malware-gen
TencentWin32.Backdoor.Ffrat.Ahyp
Ad-AwareGen:Variant.Fugrafa.3794
EmsisoftGen:Variant.Fugrafa.3794 (B)
ComodoMalware@#n0gs25d4602o
DrWebTrojan.PWS.Spy.20916
ZillyaTrojan.Agent.Win32.2640250
TrendMicroTSPY_FAREIT.UHBADDH
McAfee-GW-EditionBehavesLike.Win32.PWSZbot.ch
Trapminemalicious.high.ml.score
SophosMal/Generic-S
IkarusTrojan.Win32.Krypt
GDataGen:Variant.Fugrafa.3794
JiangminTrojan.Dimnie.dm
AviraHEUR/AGEN.1233241
MAXmalware (ai score=100)
ArcabitTrojan.Fugrafa.DED2
MicrosoftTrojan:Win32/CryptInject
CynetMalicious (score: 100)
AhnLab-V3Trojan/Win32.Kryptik.C2500162
BitDefenderThetaGen:NN.ZexaF.34742.lqW@aSuELvaG
ALYacGen:Variant.Fugrafa.3794
VBA32BScope.Malware-Cryptor.MTA
MalwarebytesMalware.AI.4201969131
TrendMicro-HouseCallTSPY_FAREIT.UHBADDH
RisingTrojan.Generic@AI.100 (RDML:Qj+wVhebeJd52l0PRVV1rQ)
SentinelOneStatic AI – Malicious PE
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/Kryptik.GGXB!tr
AVGWin32:Malware-gen
PandaTrj/CI.A
CrowdStrikewin/malicious_confidence_100% (W)

How to remove Fugrafa.3794?

Fugrafa.3794 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment