Malware

Fugrafa.5228 removal

Malware Removal

The Fugrafa.5228 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Fugrafa.5228 virus can do?

  • Creates RWX memory
  • Starts servers listening on 0.0.0.0:7765, 0.0.0.0:14358
  • A process created a hidden window
  • Uses Windows utilities for basic functionality
  • A process attempted to delay the analysis task by a long amount of time.
  • Attempts to identify installed AV products by registry key
  • Anomalous binary characteristics

How to determine Fugrafa.5228?



File Info:

crc32: 4C86CF90
md5: 4468e382b7d450e70e4370328d2f5fe4
name: 4468E382B7D450E70E4370328D2F5FE4.mlw
sha1: 1fa8683b8557b1f50d7f64c21259ddd8848eae07
sha256: 93436082a7b5265d483bf8e7708d5fa07a72440226e96593a0d49a5c17649d08
sha512: 13a8424c49b09278dd71d83f7a819c4f33a5076cd257e3db9494218bb1bfd460080264cb9b18ead44779c3b70ef2e0d8b545d11e040497827df361517d9195e1
ssdeep: 768:w1Ylq9zPwy6EhqHrcMFba2Vdaor+PhSRwomSehn+mQFbOsF6piyb5RMPJXkff6C:+9AuUrVTdayESRwom5UUS6UQ3hh+DKY
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

0: [No Data]

Fugrafa.5228 also known as:

K7AntiVirusProxy-Program ( 004b919c1 )
DrWebTrojan.DownLoader24.50612
CynetMalicious (score: 100)
ALYacGen:Variant.Fugrafa.5228
CylanceUnsafe
ZillyaTrojan.Blocker.Win32.63115
SangforTrojan.Win32.Save.a
CrowdStrikewin/malicious_confidence_90% (W)
AlibabaTrojan:Win32/Bunitu.ali1000105
K7GWProxy-Program ( 004b919c1 )
Cybereasonmalicious.2b7d45
SymantecTrojan.Smallprox
ESET-NOD32a variant of Win32/TrojanProxy.Agent.NYH
APEXMalicious
AvastWin32:Rootkit-gen [Rtk]
ClamAVWin.Malware.Razy-7139871-0
KasperskyTrojan-Ransom.Win32.Blocker.jzpq
BitDefenderGen:Variant.Fugrafa.5228
NANO-AntivirusTrojan.Win32.Blocker.eohgzk
SUPERAntiSpywareTrojan.Agent/Gen-Troprox
MicroWorld-eScanGen:Variant.Fugrafa.5228
TencentMalware.Win32.Gencirc.114ae92f
Ad-AwareGen:Variant.Fugrafa.5228
SophosMal/Generic-S
ComodoMalware@#3kktk4o6c4769
BitDefenderThetaGen:NN.ZexaF.34628.qqW@aK2XJ2li
VIPRETrojan.Win32.Generic!BT
McAfee-GW-EditionGenericRXBK-ID!4468E382B7D4
FireEyeGeneric.mg.4468e382b7d450e7
EmsisoftGen:Variant.Fugrafa.5228 (B)
SentinelOneStatic AI – Suspicious PE
WebrootW32.Trojan.Gen
AviraTR/Crypt.XPACK.Gen2
MicrosoftTrojanDropper:Win32/Bunitu.K!bit
ArcabitTrojan.Fugrafa.D146C
AegisLabTrojan.Win32.Blocker.j!c
GDataGen:Variant.Fugrafa.5228
AhnLab-V3Trojan/Win32.Blocker.C1928468
McAfeeGenericRXBK-ID!4468E382B7D4
MAXmalware (ai score=84)
VBA32Hoax.Blocker
MalwarebytesMachineLearning/Anomalous.100%
PandaTrj/Genetic.gen
RisingDropper.Bunitu!8.A59 (CLOUD)
YandexTrojan.GenAsa!/VHLJZbwgCQ
IkarusTrojan-Proxy.Agent
FortinetW32/Generic.AC.3EF6B8!tr
AVGWin32:Rootkit-gen [Rtk]
Paloaltogeneric.ml
Qihoo-360Win32/Ransom.Blocker.HgIASOoA

How to remove Fugrafa.5228?

Fugrafa.5228 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment