Categories: Ransom

Generic.Ransom.Spora.5B047B89 removal tips

The Generic.Ransom.Spora.5B047B89 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Generic.Ransom.Spora.5B047B89 virus can do?

Expresses interest in specific running processes
A process created a hidden window
The binary likely contains encrypted or compressed data.
The executable is compressed using UPX
Uses Windows utilities for basic functionality
Attempts to delete volume shadow copies
Attempts to stop active services
Exhibits possible ransomware file modification behavior
Checks the CPU name from registry, possibly for anti-virtualization
Uses suspicious command line tools or Windows utilities

How to determine Generic.Ransom.Spora.5B047B89?


File Info:
crc32: 3C7C1F56md5: 9b9b58957af6294095d6e81876a71709name: 9B9B58957AF6294095D6E81876A71709.mlwsha1: d60887f8a2268a05bd0e71cbef9ef4e177e2ad20sha256: 18b216916e59bf93a9cb65c803def6cd3b6fa601ab87b4d8bd3bc8d50cec8babsha512: 07be8a95fea701db2d17d29def8255cfbc3fabe08523157d86edb054f0a8e528fb03fb3bdc600a5b495752a6d4ae063de3cdd76580885f0cf0a7dec5e081e667ssdeep: 3072:Qz+O8Ujn9HMltncfggPuvnzW1h81X494/p5pJKTMwsia7CfGbGnLsQkE3A1x6Ax:W+O8Cqltu9cVf4uZZELsQkEQDQJztype: PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed
Version Info:
0: [No Data]

Generic.Ransom.Spora.5B047B89 also known as:

Bkav	W32.AIDetect.malware1
Elastic	malicious (high confidence)
MicroWorld-eScan	DeepScan:Generic.Ransom.Spora.5B047B89
McAfee	RDN/Ransom
Cylance	Unsafe
VIPRE	Trojan.Win32.Generic!BT
AegisLab	Trojan.Win32.DelShad.4!c
Sangfor	Trojan.Win32.Save.a
K7AntiVirus	Trojan ( 0055a1ff1 )
BitDefender	DeepScan:Generic.Ransom.Spora.5B047B89
K7GW	Trojan ( 0055a1ff1 )
Cybereason	malicious.57af62
Arcabit	DeepScan:Generic.Ransom.Spora.5B047B89
ESET-NOD32	a variant of Win32/Filecoder.GandCrab.G
APEX	Malicious
Avast	FileRepMalware
Kaspersky	Trojan.Win32.DelShad.fzi
Alibaba	Trojan:Win32/DelShad.6c1f27da
NANO-Antivirus	Trojan.Win32.DelShad.inowsi
Ad-Aware	DeepScan:Generic.Ransom.Spora.5B047B89
TACHYON	Ransom/W32.ShadowCryptor.332288
Sophos	Mal/Generic-S
F-Secure	Trojan.TR/FileCoder.uodcg
DrWeb	Trojan.PWS.Siggen2.47603
McAfee-GW-Edition	BehavesLike.Win32.Generic.cc
MaxSecure	Trojan.Malware.300983.susgen
FireEye	Generic.mg.9b9b58957af62940
Emsisoft	DeepScan:Generic.Ransom.Spora.5B047B89 (B)
SentinelOne	Static AI – Malicious PE
Avira	TR/FileCoder.uodcg
Antiy-AVL	Trojan/Win32.DelShad
Gridinsoft	Ransom.Win32.Gandcrab.sa
Microsoft	Trojan:Win32/Ymacco.AA18
ZoneAlarm	Trojan.Win32.DelShad.fzi
GData	DeepScan:Generic.Ransom.Spora.5B047B89
Cynet	Malicious (score: 100)
VBA32	BScope.Trojan.DelShad
ALYac	DeepScan:Generic.Ransom.Spora.5B047B89
MAX	malware (ai score=80)
Malwarebytes	Malware.Heuristic.1003
Panda	Trj/GdSda.A
TrendMicro-HouseCall	TROJ_GEN.R002C0PCB21
Rising	Ransom.ShadowCryptor!1.C536 (CLASSIC)
Yandex	Trojan.Filecoder!9Wgs3RBZzmc
Ikarus	Trojan-Ransom.GandCrab
eGambit	Unsafe.AI_Score_99%
Fortinet	W32/GandCrab.G!tr.ransom
BitDefenderTheta	AI:Packer.65EFB1D91E
AVG	FileRepMalware
Paloalto	generic.ml
CrowdStrike	win/malicious_confidence_100% (W)
Qihoo-360	Win32/Ransom.Spora.HwsB044A