What is "Generic.Ransom.GlobeImposter.1200B87B"?

The Generic.Ransom.GlobeImposter.1200B87B is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Generic.Ransom.GlobeImposter.1200B87B virus can do?

Installs itself for autorun at Windows startup
Exhibits possible ransomware file modification behavior
Creates a hidden or system file
Network activity detected but not expressed in API logs
Likely virus infection of existing system binary
Creates a copy of itself

Related domains:

z.whorecord.xyz

a.tomx.xyz

How to determine Generic.Ransom.GlobeImposter.1200B87B?


File Info:
crc32: 38F757B2
md5: 7ea79a82411ec8bf6a7f803edb56877c
name: 7EA79A82411EC8BF6A7F803EDB56877C.mlw
sha1: 714348d025953d8502218c83b372b2b9f9f9e8cc
sha256: bd9460906213078d5a022f400192160afd7ef1c5a8bd009c68f24fc3fa4078aa
sha512: abdee4abc90d345f57b3cb6a055aae2054f17d124ef7cb2da7c152e240bd82011af0c9c2237915e6ea476728af2559b624cb13867fc027903af2f8f9ec375320
ssdeep: 1536:ANjkfV+KJolntwrbDSTWvTwhQMhmpdL6juTV:y4fIKJolntGDT5qm3Lr
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:
0: [No Data]

Generic.Ransom.GlobeImposter.1200B87B also known as:

Bkav	W32.AIDetect.malware1
K7AntiVirus	Trojan ( 00502c261 )
Lionic	Trojan.Win32.Purgen.tpXr
Elastic	malicious (high confidence)
DrWeb	Trojan.Encoder.11539
Cynet	Malicious (score: 100)
CAT-QuickHeal	TjnRansom.Globe.S2161599
ALYac	Trojan.Ransom.Globeimposter
Cylance	Unsafe
Zillya	Trojan.Purgen.Win32.177
Sangfor	Trojan.Win32.Save.a
CrowdStrike	win/malicious_confidence_100% (D)
Alibaba	Ransom:Win32/Genasom.ali1000102
K7GW	Trojan ( 00502c261 )
Cybereason	malicious.2411ec
Cyren	W32/S-f6b6bab7!Eldorado
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win32/Filecoder.FV
APEX	Malicious
Avast	Win32:RansomX-gen [Ransom]
Kaspersky	Trojan-Ransom.Win32.Purgen.ahp
BitDefender	Generic.Ransom.GlobeImposter.1200B87B
NANO-Antivirus	Trojan.Win32.Encoder.eybimv
ViRobot	Trojan.Win32.Z.Ransom.56832.T
MicroWorld-eScan	Generic.Ransom.GlobeImposter.1200B87B
Tencent	Win32.Trojan.Raas.Auto
Ad-Aware	Generic.Ransom.GlobeImposter.1200B87B
Sophos	ML/PE-A + Troj/Ransom-EVE
Comodo	TrojWare.Win32.Necne.AB@7l2s58
BitDefenderTheta	AI:Packer.D35D5BCA1E
VIPRE	Trojan.Win32.Generic!BT
TrendMicro	Ransom_FAKEGLOBE.SMB
McAfee-GW-Edition	BehavesLike.Win32.Generic.qh
FireEye	Generic.mg.7ea79a82411ec8bf
Emsisoft	Generic.Ransom.GlobeImposter.1200B87B (B)
SentinelOne	Static AI – Malicious PE
Jiangmin	Trojan.Generic.bzhft
Avira	TR/Crypt.XPACK.Gen
Antiy-AVL	Trojan/Generic.ASMalwS.27FDCF1
Kingsoft	Win32.Troj.Generic_a.a.(kcloud)
Microsoft	Ransom:Win32/Necne
SUPERAntiSpyware	Ransom.Filecoder/Variant
GData	Generic.Ransom.GlobeImposter.1200B87B
TACHYON	Ransom/W32.GlobeImposter.56832.D
AhnLab-V3	Trojan/Win32.Generic.C2376089
Acronis	suspicious
McAfee	GenericRXEB-UN!7EA79A82411E
MAX	malware (ai score=100)
VBA32	BScope.Trojan.Encoder
Malwarebytes	Ransom.FileCryptor
Panda	Trj/Genetic.gen
TrendMicro-HouseCall	Ransom_FAKEGLOBE.SMB
Rising	Ransom.GlobeImposter!1.A538 (CLASSIC)
Yandex	Trojan.GenAsa!zWp8ygiHWug
Ikarus	Trojan-Ransom.FileCrypter
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	W32/Filecoder.FV!tr
AVG	Win32:RansomX-gen [Ransom]
Paloalto	generic.ml
Qihoo-360	Win32/Ransom.Necne.HxMBEpsA

How to remove Generic.Ransom.GlobeImposter.1200B87B?

Generic.Ransom.GlobeImposter.1200B87B removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

What is “Generic.Ransom.GlobeImposter.1200B87B”?