Malware

Graftor.739982 removal instruction

Malware Removal

The Graftor.739982 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Graftor.739982 virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Sample contains Overlay data
  • Presents an Authenticode digital signature
  • CAPE extracted potentially suspicious content
  • Unconventionial binary language: Chinese (Simplified)
  • Unconventionial language used in binary resources: Chinese (Simplified)

How to determine Graftor.739982?



File Info:

name: 90A9DA7AF95CE6887D39.mlw
path: /opt/CAPEv2/storage/binaries/574f04637d388dcac8fb34e1b4d93e39b4d4ff66035d98b47c85544008bb2259
crc32: CA208A39
md5: 90a9da7af95ce6887d39690468860f4f
sha1: d97f67ce1098a18f18238e7f25d8296e0746604c
sha256: 574f04637d388dcac8fb34e1b4d93e39b4d4ff66035d98b47c85544008bb2259
sha512: b42dd89767aaf9a7d6294f02cf5edbd80602a6b1b866247fb8f13ba334f4996665f2706c31f4c1fce3b39f44301ea97d2f4a0bb8cc64a622054866217ec1585e
ssdeep: 12288:O/AtNAFtNARO49OMlnVGO49OMloHaYHqmz/jrGjHaYHqmz/Y+C2L6Gzavly+C2L0:+fLh
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T185C4EAE40FC35251E0999BFD11AA507196630EAF87506CED129379AFEDB2CC9318D22F
sha3_384: bd204225d6fe1e853b1296fce7b9f189488a69bbb4a71d83e89aaa15182d893cb1282819c52a42cd5c9aea257287c3d1
ep_bytes: 558bec6aff6860584000680a40400064
timestamp: 2023-12-11 14:09:32


Version Info:

CompanyName: 
FileDescription: PrinterController Microsoft 基础类应用程序
FileVersion: 1, 0, 0, 1
InternalName: PrinterController
LegalCopyright: 版权所有 (C) 2020
LegalTrademarks: 
OriginalFilename: PrinterController.EXE
ProductName: PrinterController 应用程序
ProductVersion: 1, 0, 0, 1
Translation: 0x0804 0x04b0

Graftor.739982 also known as:

Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Graftor.739982
FireEyeGen:Variant.Graftor.739982
Cylanceunsafe
K7AntiVirusTrojan ( 005abfff1 )
AlibabaTrojan:Win32/Kryptik.2b2dd1ea
K7GWTrojan ( 005abfff1 )
Cybereasonmalicious.af95ce
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/Kryptik.HUUR
KasperskyHEUR:Backdoor.Win32.Lotok.gen
BitDefenderGen:Variant.Graftor.739982
TencentWin32.Backdoor.Lotok.Xwhl
SophosMal/Generic-S
VIPREGen:Variant.Graftor.739982
EmsisoftGen:Variant.Graftor.739982 (B)
IkarusTrojan.Win32.Crypt
GDataGen:Variant.Graftor.739982
GoogleDetected
Antiy-AVLTrojan/Win32.Kryptik
ArcabitTrojan.Graftor.DB4A8E
ZoneAlarmHEUR:Backdoor.Win32.Lotok.gen
MicrosoftTrojan:Win32/Wacatac.B!ml
VBA32BScope.Trojan.Agent
ALYacGen:Variant.Graftor.739982
MAXmalware (ai score=84)
MalwarebytesGeneric.Malware/Suspicious
RisingBackdoor.Lotok!8.111D5 (CLOUD)
FortinetW32/Kryptik.HUUR!tr
DeepInstinctMALICIOUS
alibabacloudBackdoor:Win/Lotok.gen

How to remove Graftor.739982?

Graftor.739982 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment