Ransom

Generic.Ransom.CloudSword.F4A32C08 (file analysis)

Malware Removal

The Generic.Ransom.CloudSword.F4A32C08 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
6-day free trial available.

What Generic.Ransom.CloudSword.F4A32C08 virus can do?

  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

How to determine Generic.Ransom.CloudSword.F4A32C08?


File Info:

crc32: 83CC2794
md5: ce0ecdff71a09264656f0c1bd8e16042
name: CE0ECDFF71A09264656F0C1BD8E16042.mlw
sha1: 6a03b304f61e11f58fb924f1b09bfdb2889f712f
sha256: 479a22f7d237f106a309d15b940df13eaba43c1a13bde3e99e85d493b5cfba75
sha512: 73e2a4f02281ee25aee94f96decbc851b2b184c90008f67631d21edff6288ab2a06132f34e3b30a6c986ad27e8e1b774b4e7838f79aa1e6824707b693bf48d58
ssdeep: 6144:b8LxBqUdQEVgNgs4U7EdCqGBcUgYqrtz/e4lWVxP8w+wiuiaUoCwNdfLRLL6LKUx:nUdQEy2ZC7GVYqrtbe9xz+sUojfNmKk
type: PE32 executable (GUI) Intel 80386, for MS Windows, Nullsoft Installer self-extracting archive

Version Info:

0: [No Data]

Generic.Ransom.CloudSword.F4A32C08 also known as:

BkavW32.AIDetect.malware2
Elasticmalicious (high confidence)
ALYacDeepScan:Generic.Ransom.CloudSword.F4A32C08
CylanceUnsafe
BitDefenderDeepScan:Generic.Ransom.CloudSword.F4A32C08
CyrenW32/Injector.ALJ.gen!Eldorado
SymantecTrojan.Gen.2
APEXMalicious
CynetMalicious (score: 100)
KasperskyUDS:Trojan-PSW.Win32.Stealer.gen
AlibabaTrojan:Win32/runner.ali1000123
MicroWorld-eScanDeepScan:Generic.Ransom.CloudSword.F4A32C08
Ad-AwareDeepScan:Generic.Ransom.CloudSword.F4A32C08
SophosGeneric ML PUA (PUA)
McAfee-GW-EditionBehavesLike.Win32.Generic.fc
FireEyeGeneric.mg.ce0ecdff71a09264
EmsisoftDeepScan:Generic.Ransom.CloudSword.F4A32C08 (B)
SentinelOneStatic AI – Malicious PE
KingsoftWin32.PSWTroj.Undef.(kcloud)
MicrosoftTrojan:Win32/Sabsik.FL.B!ml
ArcabitDeepScan:Generic.Ransom.CloudSword.F4A32C08
GDataDeepScan:Generic.Ransom.CloudSword.F4A32C08
McAfeeArtemis!CE0ECDFF71A0
MAXmalware (ai score=84)
MalwarebytesMalware.AI.3287555329
TrendMicro-HouseCallTROJ_GEN.R06FC0DIM21
IkarusWin32.Outbreak
FortinetW32/Kryptik.HMOB!tr
Paloaltogeneric.ml

How to remove Generic.Ransom.CloudSword.F4A32C08?

Generic.Ransom.CloudSword.F4A32C08 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment