About “Generic.Ransom.Amnesia.8B6DFA0F” infection

Malware Removal

The Generic.Ransom.Amnesia.8B6DFA0F is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware - Review 2020

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
6-day free trial available.

What Generic.Ransom.Amnesia.8B6DFA0F virus can do?

  • Possible date expiration check, exits too soon after checking local time
  • Repeatedly searches for a not-found process, may want to run with startbrowser=1 option
  • Drops a binary and executes it
  • The binary likely contains encrypted or compressed data.
  • Executed a very long command line or script command which may be indicative of chained commands or obfuscation
  • A scripting utility was executed
  • Uses Windows utilities for basic functionality
  • Attempts to delete volume shadow copies
  • Modifies boot configuration settings
  • Creates or sets a registry key to a long series of bytes, possibly to store a binary or malware config
  • Clears Windows events or logs
  • Creates a copy of itself
  • Uses suspicious command line tools or Windows utilities

How to determine Generic.Ransom.Amnesia.8B6DFA0F?


File Info:

crc32: F73717CA
md5: bfa5e1da721a85c2a3fbe272ecd8a54e
name: BFA5E1DA721A85C2A3FBE272ECD8A54E.mlw
sha1: a6d4f477df91f808542b345c4d95958e06b1e07b
sha256: 899f872921d874f2f00431e8d34789c83b8fd638088a58db7936d3a0975c1381
sha512: 3e725bc52e09981c80ad914a3cffc20d229e86ae3ba46cacbca3fa46f3e6de767d0509f73818a79a354b95609401b8218b9265c55473798747da6757f7a2bae0
ssdeep: 3072:8O6Q/f5N5NHQ/lcrYiJSWKgeWKvhrjkxtO/bHbaa+ujcvKd8s:8O6Uz5XtwWzqvhq8Hbazziz
type: PE32 executable (GUI) Intel 80386 (stripped to external PDB), for MS Windows

Version Info:

0: [No Data]

Generic.Ransom.Amnesia.8B6DFA0F also known as:

BkavW32.AIDetect.malware1
K7AntiVirusTrojan ( 004f6e981 )
Elasticmalicious (high confidence)
DrWebTrojan.Encoder.26375
CynetMalicious (score: 100)
ALYacTrojan.Ransom.Scarab
CylanceUnsafe
SangforTrojan.Win32.Save.a
CrowdStrikewin/malicious_confidence_100% (D)
K7GWTrojan ( 004f6e981 )
Cybereasonmalicious.a721a8
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/Filecoder.FS
APEXMalicious
AvastWin32:Malware-gen
ClamAVWin.Ransomware.Scarab-6336012-1
KasperskyHEUR:Trojan-Ransom.Win32.Generic
BitDefenderDeepScan:Generic.Ransom.Amnesia.8B6DFA0F
NANO-AntivirusTrojan.Win32.Filecoder.eyvufb
ViRobotTrojan.Win32.Z.Securityshield.213504
MicroWorld-eScanDeepScan:Generic.Ransom.Amnesia.8B6DFA0F
TencentWin32.Trojan.Filecoder.Pjxd
Ad-AwareDeepScan:Generic.Ransom.Amnesia.8B6DFA0F
SophosMal/Generic-S
ComodoTrojWare.Win32.TrojanDownloader.Delf.gen@1xqow5
BitDefenderThetaAI:Packer.9EC947A81B
VIPREFraudTool.Win32.SecurityShield.ek!c (v)
TrendMicroMal_Purge
McAfee-GW-EditionBehavesLike.Win32.Wanex.dh
FireEyeGeneric.mg.bfa5e1da721a85c2
EmsisoftDeepScan:Generic.Ransom.Amnesia.8B6DFA0F (B)
SentinelOneStatic AI – Malicious PE
JiangminTrojan.Generic.caexw
WebrootW32.Adware.Gen
AviraTR/Downloader.Gen
eGambitUnsafe.AI_Score_99%
MicrosoftRansom:Win32/Pulobe.RB!MSR
ArcabitDeepScan:Generic.Ransom.Amnesia.8B6DFA0F
GDataDeepScan:Generic.Ransom.Amnesia.8B6DFA0F
TACHYONRansom/W32.DP-Scarab.213504
AhnLab-V3Trojan/Win32.Ransom.R338400
Acronissuspicious
McAfeeGenericRXDM-JB!BFA5E1DA721A
MAXmalware (ai score=98)
VBA32BScope.Trojan.Encoder
MalwarebytesRansom.Scarab
PandaTrj/Genetic.gen
TrendMicro-HouseCallMal_Purge
RisingRansom.Kitoles!8.ED4F (CLOUD)
YandexTrojan.GenAsa!bXAtAcuJUJk
IkarusTrojan-Ransom.FileCrypter
FortinetW32/Msht.GJ!tr
AVGWin32:Malware-gen
Paloaltogeneric.ml
Qihoo-360Win32/Ransom.Amnesia.HwUBYD8A

How to remove Generic.Ransom.Amnesia.8B6DFA0F?

Generic.Ransom.Amnesia.8B6DFA0F removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

Leave a Comment