Ransom

Generic.Ransom.HydraCrypt.6A960A69 (file analysis)

Malware Removal

The Generic.Ransom.HydraCrypt.6A960A69 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Generic.Ransom.HydraCrypt.6A960A69 virus can do?

  • Network activity detected but not expressed in API logs

Related domains:

z.whorecord.xyz
a.tomx.xyz

How to determine Generic.Ransom.HydraCrypt.6A960A69?



File Info:

crc32: 8E169BDE
md5: 22ab367adc74ec475aba9cbfec89ed50
name: 22AB367ADC74EC475ABA9CBFEC89ED50.mlw
sha1: 92f3c54eab49be28f8b2da0ab7dd5a5fb9e82ce3
sha256: 0a00b6668696bf62e14ea1acaa855397730e24bd66b594d9602bee37c2de2e6e
sha512: 41d78c675ba00e65b363acb9cf6a4a460d3a395be681d29b713be24bdc2af32ed6f2ecf4eb2d2cc3dbcaa8a7ee885ab8d7b5c6fb42c80d7f644b09bfd556ea58
ssdeep: 12288:t/DJfLnuGpVITc5OMpSIfysJgKyAqExU9fY+X81lW6VQ2/TzrCxoQ2vTXaFeov5:ffQKpya2v41h5Z
type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows


Version Info:

Translation: 0x0000 0x04b0
LegalCopyright:  
Assembly Version: 0.0.0.0
InternalName: ransomware.exe
FileVersion: 0.0.0.0
ProductVersion: 0.0.0.0
FileDescription:  
OriginalFilename: ransomware.exe

Generic.Ransom.HydraCrypt.6A960A69 also known as:

Elasticmalicious (high confidence)
DrWebTrojan.ClipBankerNET.7
ClamAVWin.Ransomware.Hydracrypt-9878672-0
ALYacGeneric.Ransom.HydraCrypt.6A960A69
CylanceUnsafe
SangforTrojan.Win32.Save.a
CrowdStrikewin/malicious_confidence_90% (D)
CyrenW32/S-3049d5f7!Eldorado
ESET-NOD32a variant of MSIL/Filecoder.AGP
APEXMalicious
AvastWin32:RansomX-gen [Ransom]
CynetMalicious (score: 100)
KasperskyHEUR:Trojan-Ransom.MSIL.Agent.gen
BitDefenderGeneric.Ransom.HydraCrypt.6A960A69
MicroWorld-eScanGeneric.Ransom.HydraCrypt.6A960A69
Ad-AwareGeneric.Ransom.HydraCrypt.6A960A69
SophosML/PE-A + Mal/Genasom-A
BitDefenderThetaAI:Packer.6A5DD6711E
McAfee-GW-EditionBehavesLike.Win32.Generic.bt
FireEyeGeneric.mg.22ab367adc74ec47
EmsisoftGeneric.Ransom.HydraCrypt.6A960A69 (B)
SentinelOneStatic AI – Malicious PE
AviraHEUR/AGEN.1138919
eGambitUnsafe.AI_Score_99%
MicrosoftRansom:MSIL/ApisCryptor.PAA!MTB
ArcabitGeneric.Ransom.HydraCrypt.6A960A69
GDataMSIL.Trojan-Ransom.Remind.B
AhnLab-V3Ransomware/Win.FTD.C4580181
MAXmalware (ai score=82)
MalwarebytesRansom.FileCryptor
RisingRansom.Destructor!1.B060 (CLASSIC)
IkarusTrojan-Ransom.FileCrypter
MaxSecureTrojan.Malware.300983.susgen
FortinetMSIL/Filecoder.AGP!tr.ransom
AVGWin32:RansomX-gen [Ransom]

How to remove Generic.Ransom.HydraCrypt.6A960A69?

Generic.Ransom.HydraCrypt.6A960A69 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment