Graftor.12609 removal instruction

The Graftor.12609 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Graftor.12609 virus can do?

Unconventionial binary language: Chinese (Simplified)
Unconventionial language used in binary resources: Chinese (Simplified)
Authenticode signature is invalid

How to determine Graftor.12609?


File Info:
name: 283D185E60A626BB29C7.mlw
path: /opt/CAPEv2/storage/binaries/73b6b471b42192934eb5a4b5031f7e84ac2e55009c52c25e6ea9c8f08d2d920e
crc32: A0493C8E
md5: 283d185e60a626bb29c7f4f9b26057a7
sha1: ddda977596336e50fc6baf3da4a5c215db8451a1
sha256: 73b6b471b42192934eb5a4b5031f7e84ac2e55009c52c25e6ea9c8f08d2d920e
sha512: 7db82ab3ad020d4bddaecd7e5eb32ae2fa208282ce85ddd546dd3d2a17175962d5f7dbc83adf331b157869783143cac1b0213972c11784e72f844a24cc170967
ssdeep: 6144:gJLIHRkVuHfxVe3ubXF51UDxYJFk1esigER5q447KchuqBs7MOUKiA5yv5d8toP0:gJKRko/xVeIFclYJFkAyj4t7MOUKNK89
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T19AD49E02FAB3D1F5C67451B0057AAB3AA5768A050B17CFC39365DE2C1D32A90F93B17A
sha3_384: 1e3de47560ebbc74f088fe703cce6158c9d8f8a2d0376b1328c78251c3a8f701ebcf98d16a5fc3e79770f0d5c8e667a1
ep_bytes: 558bec6aff685067470068b436450064
timestamp: 2012-04-01 17:17:15

Version Info:
FileVersion: 1.0.0.0
FileDescription: 易语言程序
ProductName: 易语言程序
ProductVersion: 1.0.0.0
LegalCopyright: 作者版权所有 请尊重并使用正版
Comments: 本程序使用易语言编写(http://www.eyuyan.com)
Translation: 0x0804 0x04b0

Graftor.12609 also known as:

Bkav	W32.AIDetectMalware
Lionic	Trojan.Win32.Generic.lhqQ
Elastic	malicious (high confidence)
MicroWorld-eScan	Gen:Variant.Graftor.12609
ClamAV	Win.Malware.Qqpass-9877228-0
FireEye	Generic.mg.283d185e60a626bb
CAT-QuickHeal	Trojan.Antavmu.20290
ALYac	Gen:Variant.Graftor.12609
Malwarebytes	Generic.Malware.AI.DDS
Sangfor	Trojan.Win32.Agent.V2of
K7AntiVirus	Trojan ( 005246d51 )
K7GW	Trojan ( 005246d51 )
Cybereason	malicious.e60a62
BitDefenderTheta	Gen:NN.ZexaF.36662.Lq0@aeSorZob
Cyren	W32/Trojan.GRW.gen!Eldorado
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win32/Packed.FlyStudio.AA potentially unwanted
APEX	Malicious
Cynet	Malicious (score: 100)
BitDefender	Gen:Variant.Graftor.12609
Avast	Win32:Malware-gen
Emsisoft	Application.Generic (A)
F-Secure	Trojan:W32/DelfInject.R
VIPRE	Gen:Variant.Graftor.12609
TrendMicro	TROJ_GEN.R002C0PHR23
McAfee-GW-Edition	BehavesLike.Win32.Generic.hh
Trapmine	suspicious.low.ml.score
Sophos	Generic Reputation PUA (PUA)
SentinelOne	Static AI – Malicious PE
GData	Win32.Application.PSE.1THOGOA
Jiangmin	TrojanDropper.Agent.awfe
Antiy-AVL	Trojan/Win32.FlyStudio.a
Xcitium	Worm.Win32.Dropper.RA@1qraug
Arcabit	Trojan.Graftor.D3141
Google	Detected
McAfee	GenericRXEN-XA!283D185E60A6
MAX	malware (ai score=81)
Cylance	unsafe
TrendMicro-HouseCall	TROJ_GEN.R002C0PHR23
Rising	Trojan.Generic@AI.90 (RDML:3Jxd+/gCmfYjzx6XGRGdLQ)
Yandex	Trojan.GenAsa!0fGa79tfJrY
Ikarus	AdWare.Cinmus
MaxSecure	Dropper.Dinwod.frindll
AVG	Win32:Malware-gen
DeepInstinct	MALICIOUS
CrowdStrike	win/malicious_confidence_90% (W)

How to remove Graftor.12609?

Graftor.12609 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X