Malware

How to remove “Graftor.413176”?

Malware Removal

The Graftor.413176 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Graftor.413176 virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Sample contains Overlay data
  • Reads data out of its own binary image
  • CAPE extracted potentially suspicious content
  • The binary contains an unknown PE section name indicative of packing
  • The executable is compressed using UPX
  • Authenticode signature is invalid
  • Collects information to fingerprint the system

How to determine Graftor.413176?



File Info:

name: 7F3AED1728D85D9B38FF.mlw
path: /opt/CAPEv2/storage/binaries/ad980eab68a1462225f0feef93ad4685a1a13db492212d88efb3901fdef73411
crc32: 1BB55734
md5: 7f3aed1728d85d9b38ff141f95a2bd60
sha1: ba6e05070a78f6bfe96bf4a5b615af0cfb347954
sha256: ad980eab68a1462225f0feef93ad4685a1a13db492212d88efb3901fdef73411
sha512: cd6ae1df16de0027ea6c66dca7dbb6d9f7e1bcc0d7ad025cc6fd4f3ccbb26e7dd3f5a685438451a8551bcebcc392b88c58aca57b684610a684d6d8de58b648d6
ssdeep: 3072:mN6hAY6DxQKBL+UjcjR/6HAQ8S138WtA7Kzfk0sabq:mN6hINR+Uwl6HlXA78fJsabq
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T18C44BF90D61FA597D086303626D0D0B9EA0B9FB0896E9133AFC8FEE87571181467F379
sha3_384: 8e81296ffaa230c8102047fd6e5fb44e8a2e705b6af97fae39bc6b154917873f78fa0a77828220f18fdb3419786d848c
ep_bytes: 64a1000000005589e56aff681c604000
timestamp: 2013-05-06 11:32:31


Version Info:

0: [No Data]

Graftor.413176 also known as:

BkavW32.AIDetectMalware
AVGWin32:Gepys-F [Trj]
DrWebTrojan.Redirect.147
MicroWorld-eScanGen:Variant.Graftor.413176
FireEyeGeneric.mg.7f3aed1728d85d9b
SkyhighBehavesLike.Win32.Generic.dm
McAfeeGenericRXGZ-TH!7F3AED1728D8
Cylanceunsafe
ZillyaTrojan.Kryptik.Win32.4701240
SangforSuspicious.Win32.Save.a
AlibabaTrojan:Win32/Gepys.529ad2e9
K7GWTrojan ( 004bcce41 )
K7AntiVirusTrojan ( 004bcce41 )
BitDefenderThetaGen:NN.ZexaF.36802.qqX@aK5CRupi
SymantecML.Attribute.HighConfidence
Elasticmalicious (high confidence)
ESET-NOD32a variant of Win32/Kryptik.BAHK
CynetMalicious (score: 100)
APEXMalicious
KasperskyHEUR:Trojan.Win32.ShipUp.gen
BitDefenderGen:Variant.Graftor.413176
NANO-AntivirusTrojan.Win32.Redirect.cqnbyu
AvastWin32:Gepys-F [Trj]
TencentTrojan.Win32.ShipUp.hv
EmsisoftGen:Variant.Graftor.413176 (B)
F-SecureTrojan.TR/Crypt.XPACK.Gen
VIPREGen:Variant.Graftor.413176
TrendMicroTROJ_AGENT_058956.TOMB
Trapminemalicious.high.ml.score
SophosMal/Generic-S
IkarusTrojan-Downloader.Win32.Dofoil
JiangminTrojan/Generic.awnsz
VaristW32/ABRisk.XXOU-1055
AviraTR/Crypt.XPACK.Gen
Antiy-AVLTrojan[Dropper]/Win32.Gepys
Kingsoftmalware.kb.a.1000
MicrosoftTrojan:Win32/Gepys!pz
XcitiumTrojWare.Win32.Carberp.BA@7fquvi
ArcabitTrojan.Graftor.D64DF8
ViRobotTrojan.Win.Z.Kryptik.270768
ZoneAlarmHEUR:Trojan.Win32.ShipUp.gen
GDataWin32.Trojan.PSE.17513PM
GoogleDetected
AhnLab-V3Trojan/Win.Agent_057726.R641758
VBA32SScope.Malware-Cryptor.Carberp.2313
ALYacGen:Variant.Graftor.413176
MalwarebytesGeneric.Malware.AI.DDS
TrendMicro-HouseCallTROJ_AGENT_058956.TOMB
RisingTrojan.Injector!1.A765 (CLASSIC)
YandexTrojan.GenAsa!/krqYpzMdw0
MAXmalware (ai score=84)
MaxSecureTrojan.Malware.121218.susgen
FortinetW32/Kryptik.AYTT!tr
DeepInstinctMALICIOUS
alibabacloudTrojan:Win/Gepys.G(dyn)

How to remove Graftor.413176?

Graftor.413176 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment