Malware

Graftor.253716 removal

Malware Removal

The Graftor.253716 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Graftor.253716 virus can do?

  • Attempts to connect to a dead IP:Port (1 unique times)
  • Creates RWX memory
  • Unconventionial binary language: Portuguese (Brazil)
  • Unconventionial language used in binary resources: Portuguese (Brazilian)
  • Uses Windows utilities for basic functionality
  • Installs itself for autorun at Windows startup
  • Creates a copy of itself
  • Anomalous binary characteristics

Related domains:

ipdinho.ddns.net

How to determine Graftor.253716?



File Info:

crc32: 45F4BF1B
md5: b733cc68b0ad980bb132727e13edd52d
name: B733CC68B0AD980BB132727E13EDD52D.mlw
sha1: d261f2e0aecc320b07c49e4c5fc96041c6dfbf02
sha256: b4dd2b5a6566a76d38c35174d5202ea08dfdbd890c04a53db39e178192a9c9ba
sha512: ae0ae33dc9fc8edb735ece3fdd13228a799ddaf509be1fb1e9c7ea7365c7d7772e8599edec7db42e1141eeb7f2f3182031238bd4c991e1970be8f7408ad1bb66
ssdeep: 12288:Ma3J2icJktLfpgNRRgMcDxyqYkLowhYNU6nW:T38iZtLfpgNRVadbEY8W
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright: Deploy Team
InternalName: Citrix
FileVersion: 1.1.8.27
CompanyName: Citrix Systems inc.
LegalTrademarks: Deploy Team
Comments: Citrix
ProductName: Citrix
ProductVersion: 1.0.0.0
FileDescription: Citrix Systems inc.
OriginalFilename: Citrix
Translation: 0x0416 0x04e4

Graftor.253716 also known as:

BkavW32.AIDetectVM.malware1
MicroWorld-eScanGen:Variant.Graftor.253716
FireEyeGeneric.mg.b733cc68b0ad980b
ALYacGen:Variant.Graftor.253716
CylanceUnsafe
ZillyaTrojan.Delf.Win32.78867
SangforMalware
K7AntiVirusTrojan ( 00487b8d1 )
BitDefenderGen:Variant.Graftor.253716
K7GWTrojan ( 00487b8d1 )
SymantecML.Attribute.HighConfidence
APEXMalicious
Paloaltogeneric.ml
KasperskyTrojan-Ransom.Win32.PornoAsset.cywc
NANO-AntivirusTrojan.Win32.PornoAsset.emdwvk
AegisLabTrojan.Win32.PornoAsset.4!c
Ad-AwareGen:Variant.Graftor.253716
EmsisoftGen:Variant.Graftor.253716 (B)
ComodoMalware@#xsk2sov4klrz
F-SecureTrojan.TR/Delf.Agent.oqdzb
VIPRETrojan.Win32.Generic!BT
McAfee-GW-EditionBehavesLike.Win32.Dropper.hh
SophosMal/Generic-S
AviraTR/Delf.Agent.oqdzb
MAXmalware (ai score=84)
Antiy-AVLTrojan[Ransom]/Win32.PornoAsset
KingsoftWin32.Troj.Generic_a.a.(kcloud)
MicrosoftTrojan:Win32/Dynamer!rfn
ArcabitTrojan.Graftor.D3DF14
ZoneAlarmTrojan-Ransom.Win32.PornoAsset.cywc
GDataGen:Variant.Graftor.253716
CynetMalicious (score: 100)
McAfeeArtemis!B733CC68B0AD
VBA32TScope.Trojan.Delf
ESET-NOD32a variant of Win32/Delf.OKU
RisingRansom.PornoAsset!8.6AA (TFE:5:Vz64yFzxRXQ)
YandexTrojan.GenAsa!TLkrCeTmty4
IkarusBackdoor.Win32.Hupigon
FortinetW32/Delf.OKU!tr
BitDefenderThetaGen:NN.ZelphiF.34670.JG0@aK77QlcG
AVGWin32:Malware-gen
Cybereasonmalicious.8b0ad9
PandaTrj/GdSda.A

How to remove Graftor.253716?

Graftor.253716 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment