Malware

About “Graftor.714657” infection

Malware Removal

The Graftor.714657 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Graftor.714657 virus can do?

  • Executable code extraction
  • Presents an Authenticode digital signature
  • Creates RWX memory
  • Expresses interest in specific running processes
  • Reads data out of its own binary image
  • Unconventionial binary language: Chinese (Simplified)
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • The binary likely contains encrypted or compressed data.
  • Queries information on disks, possibly for anti-virtualization
  • Anomalous binary characteristics

Related domains:

tj.kpzip.com

How to determine Graftor.714657?



File Info:

crc32: DF5DBB8C
md5: 73304fd4a820a8c0b064c67b78df18d8
name: wobdabtankyzipv3.2.1.2kzgw001.exe
sha1: 9d6310a8e864b3c96c519ab55d5b303f35145fc3
sha256: 1e3a07422257a1a616e1598fbd2ea940457166603e0234a3ce2be0caabb83c51
sha512: 3d1249ce7bfc8940884665396e15d1eed852fe8f0034d3aba96188280849d8becfeb1ae8ac4960b0d3c75e8b6058e7d2c0fe557647ed366aff7f1013f7362368
ssdeep: 196608:oc3G6hlTUtIA7XRJE0SvFBsWlNkEPoYidJ52M/hXUevLMzb/rcku3SZvz:ocfn2WNEEQ7U6UeebIv3A7
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright: x4e0ax6d77x5e7fx4e50x7f51x7edcx79d1x6280x6709x9650x516cx53f8. Copyright 2010-2013
InternalName: KuaiZip Install
CompanyShortName: x4e0ax6d77x5e7fx4e50x7f51x7edcx79d1x6280x6709x9650x516cx53f8
FileVersion: 3.2.1.2
CompanyName: x4e0ax6d77x5e7fx4e50x7f51x7edcx79d1x6280x6709x9650x516cx53f8
BuildTag: 2019/12/10 [001]
ProductShortName: x5febx538b
Comments: www.kpzip.com
ProductName: x5febx538bx8f6fx4ef6x7a0bx5e8f
ProductVersion: 3.2.1.2
FileDescription: x5febx538bx5b89x88c5x5305x7a0bx5e8f
OriginalFilename: KuaiZip Setup
Translation: 0x0804 0x04b0

Graftor.714657 also known as:

MicroWorld-eScanGen:Variant.Graftor.714657
ALYacGen:Variant.Graftor.714657
CylanceUnsafe
VIPRETrojan.Win32.Generic!BT
K7AntiVirusAdware ( 0055caed1 )
BitDefenderGen:Variant.Graftor.714657
K7GWAdware ( 0055caed1 )
ArcabitTrojan.Graftor.DAE7A1
CyrenW32/Application.NGTL-7138
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/KuaiZip.Z.gen potentially unwanted
TrendMicro-HouseCallTROJ_GEN.R002H0CBO20
Kasperskynot-a-virus:RiskTool.Win32.KuaiZip.bsl
AlibabaRiskWare:Win32/KuaiZip.6ac47455
NANO-AntivirusRiskware.Win32.KuaiZip.hcpeaw
Endgamemalicious (high confidence)
SophosGeneric PUA JN (PUA)
DrWebProgram.Kuaizip.6
McAfee-GW-EditionArtemis!PUP
FireEyeGen:Variant.Graftor.714657
EmsisoftGen:Variant.Graftor.714657 (B)
APEXMalicious
JiangminRiskTool.KuaiZip.ha
FortinetW32/Agent.9C0A!tr
Antiy-AVLGrayWare/Win32.KuaiZip
MicrosoftPUA:Win32/Presenoker
ZoneAlarmnot-a-virus:RiskTool.Win32.KuaiZip.bsl
AhnLab-V3PUP/Win32.KuaiZip.R243583
McAfeeArtemis!73304FD4A820
MAXmalware (ai score=99)
VBA32BScope.Adware.Burden
MalwarebytesPUP.Optional.Kuaizip
PandaTrj/CI.A
RisingTrojan.Generic@ML.80 (RDML:Lo9aR2YbsKc6WIfbv2Kd8A)
GDataGen:Variant.Graftor.714657
Ad-AwareGen:Variant.Graftor.714657
AVGWin32:Malware-gen
AvastWin32:Malware-gen

How to remove Graftor.714657?

Graftor.714657 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment