Ransom

How to remove “Generic.Ransom.Koolova.ED55C8D6”?

Malware Removal

The Generic.Ransom.Koolova.ED55C8D6 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Generic.Ransom.Koolova.ED55C8D6 virus can do?

  • Executable code extraction
  • Creates RWX memory

How to determine Generic.Ransom.Koolova.ED55C8D6?



File Info:

crc32: 440A59D7
md5: d8791bd0d9e9efae6a3b3ef398427f37
name: D8791BD0D9E9EFAE6A3B3EF398427F37.mlw
sha1: 5a380e530d3e3a655f39689fde3f7ee7be753c66
sha256: b263834e84b95765a83a3a1f9cdc59ab91144f513827dba12e04edf4fdc716a7
sha512: 562029d0918c7935fd4c68bea3128b2a103fe19276da10cae6cd79ffb60b3d850e14f5aba2bacbebbf24ff869a9a446236289d72da83cf9485e09617f9b8e91d
ssdeep: 768:wBP6ADKNP/h1KNdafi6GKUdDbv87bpEk:wPjWNnwdbvpbv87bh
type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows


Version Info:

Translation: 0x0000 0x04b0
LegalCopyright: Copyright xa9  2015
Assembly Version: 1.0.0.0
InternalName: DUMB.exe
FileVersion: 1.0.0.0
CompanyName: 
LegalTrademarks: 
Comments: 
ProductName: DUMB
ProductVersion: 1.0.0.0
FileDescription: DUMB
OriginalFilename: DUMB.exe

Generic.Ransom.Koolova.ED55C8D6 also known as:

Elasticmalicious (high confidence)
DrWebTrojan.Encoder.15077
CynetMalicious (score: 90)
ALYacGeneric.Ransom.Koolova.ED55C8D6
CylanceUnsafe
CrowdStrikewin/malicious_confidence_60% (W)
Cybereasonmalicious.0d9e9e
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of MSIL/Filecoder.DY
APEXMalicious
AvastWin32:RansomX-gen [Ransom]
BitDefenderGeneric.Ransom.Koolova.ED55C8D6
MicroWorld-eScanGeneric.Ransom.Koolova.ED55C8D6
Ad-AwareGeneric.Ransom.Koolova.ED55C8D6
SophosMal/Crypdum-A
BitDefenderThetaGen:NN.ZemsilF.34670.cm0@aeUi1hc
McAfee-GW-EditionArtemis
FireEyeGeneric.Ransom.Koolova.ED55C8D6
EmsisoftGeneric.Ransom.Koolova.ED55C8D6 (B)
AviraHEUR/AGEN.1133963
MicrosoftRansom:MSIL/FileCoder.PA!MTB
ArcabitGeneric.Ransom.Koolova.ED55C8D6
GDataMSIL.Trojan-Ransom.Filecoder.AN
AhnLab-V3Trojan/Win32.Occamy.C2499816
McAfeeArtemis!D8791BD0D9E9
MAXmalware (ai score=82)
MalwarebytesTrojan.FileCryptor
RisingTrojan.Filecoder!8.68 (TFE:dGZlOgxrSM8oyFlZlg)
IkarusTrojan.MSIL.Filecoder
FortinetMSIL/Filecoder.DY!tr.ransom
AVGWin32:RansomX-gen [Ransom]

How to remove Generic.Ransom.Koolova.ED55C8D6?

Generic.Ransom.Koolova.ED55C8D6 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment