Malware

Graftor.484425 information

Malware Removal

The Graftor.484425 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Graftor.484425 virus can do?

  • At least one process apparently crashed during execution
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • Authenticode signature is invalid
  • CAPE detected the W1RAT malware family
  • Anomalous binary characteristics

How to determine Graftor.484425?



File Info:

name: 990978E960FFFE40B314.mlw
path: /opt/CAPEv2/storage/binaries/a36a862fbb750a8c0606e03b78d5c495602b0623a932c518b39612bc35659d2b
crc32: 591C6097
md5: 990978e960fffe40b314f4f8f10b182a
sha1: 3283434d8de93a22a4c3c8fd6c0ec0bda6db8894
sha256: a36a862fbb750a8c0606e03b78d5c495602b0623a932c518b39612bc35659d2b
sha512: d352eb2e96e9688c8c64770419d13a6870a043a8102621ac7840abd524345cf9195158005d743cde45b01c0ebc58da9fef313acf7eba53f63bd5b10a18b96985
ssdeep: 12288:CmHXpUrWP3UlG0T4pyW7AEE6HSWX8pfeCm:CUUiP3UlGTpyWA+Xwnm
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1B1948D13BE51C6FCC42622B1A9746BA946BADC24AB2405F333E03D755D741E10EF72AB
sha3_384: 910dd564b8125985c00693f1662a72943a329c44540fb85f1a99ba3ec68a6184ce2d21327bf6f5d6744132ab948147a9
ep_bytes: e803990000e989feffff8bff558bec83
timestamp: 2018-06-11 23:37:20


Version Info:

FileVersion: 67.0.3396.87
ProductVersion: 67.0.3396.87
OriginalFilename: test.exe
InternalName: Google Chrome
FileDescription: Google Chrome
CompanyName: Google Inc.
LegalCopyright: Copyright 2017 Google Inc. All rights reserved.
ProductName: Google Chrome
Translation: 0x0000 0x04b0

Graftor.484425 also known as:

LionicTrojan.Win32.Graftor.4!c
MicroWorld-eScanGen:Variant.Graftor.484425
FireEyeGen:Variant.Graftor.484425
CAT-QuickHealTrojan.Mauvaise.SL1
ALYacGen:Variant.Graftor.484425
CylanceUnsafe
SangforPUP.Win32.Graftor.484425
CrowdStrikewin/malicious_confidence_60% (W)
AlibabaTrojan:Win32/Kryptik.ea05b4da
K7GWTrojan ( 0052d2381 )
K7AntiVirusTrojan ( 0052d2381 )
BitDefenderThetaGen:NN.ZexaF.34182.zu0@ayRQt4cj
SymantecTrojan.Gen.MBT
ESET-NOD32a variant of Win32/Kryptik.GFDS
TrendMicro-HouseCallTROJ_GEN.R03BC0PLJ21
Paloaltogeneric.ml
BitDefenderGen:Variant.Graftor.484425
ViRobotTrojan.Win32.Z.Kryptik.409600.FW
AvastWin32:Trojan-gen
TencentWin32.Trojan.Crypt.Hryn
SophosMal/Generic-S
ComodoMalware@#jqnu2gl2k3vt
TrendMicroTROJ_GEN.R03BC0PLJ21
McAfee-GW-EditionGenericRXRC-UZ!990978E960FF
EmsisoftGen:Variant.Graftor.484425 (B)
IkarusPUA.Toolbar.Babylon
AviraTR/Crypt.XPACK.Gen
MAXmalware (ai score=95)
MicrosoftTrojan:Win32/Occamy.CA3
GDataGen:Variant.Graftor.484425
CynetMalicious (score: 99)
AhnLab-V3Trojan/Win32.Agent.R225850
McAfeeGenericRXRC-UZ!990978E960FF
MalwarebytesMalware.AI.3656865943
RisingTrojan.Kryptik!8.8 (CLOUD)
YandexTrojan.GenAsa!pzkubOs0o6M
FortinetW32/Kryptik.GFDS!tr
AVGWin32:Trojan-gen
Cybereasonmalicious.960fff
PandaTrj/CI.A

How to remove Graftor.484425?

Graftor.484425 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment