Malware

Graftor.895493 (B) removal instruction

Malware Removal

The Graftor.895493 (B) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Graftor.895493 (B) virus can do?

  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • The binary contains an unknown PE section name indicative of packing
  • The executable is compressed using UPX
  • Authenticode signature is invalid

How to determine Graftor.895493 (B)?



File Info:

name: 83A2432FDCA3FFA5324B.mlw
path: /opt/CAPEv2/storage/binaries/fba26071779ef4465b7a729e7a3e5af4c6c2ad498596fd3eb7342776f53a12b7
crc32: C2388F33
md5: 83a2432fdca3ffa5324bb9dca419a914
sha1: 9b7001852c1d91e7ec716499b693d64f40103910
sha256: fba26071779ef4465b7a729e7a3e5af4c6c2ad498596fd3eb7342776f53a12b7
sha512: b0393db34369f967930ca4472cd56144eb71e38a72cb49a47c8318f1825a3b875df1c3bd21de4a8d83e3114caa85ceeb349466d264beafde705c93853c94a185
ssdeep: 192:6De5bX2wfP7gcsU/2srlTfit3tr6QmNK7hQz1e5bX2wfP7gcsUCqwxIa7z6:6WbPjsUuYlTq+QmNYhQUbPjsUPwxH
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T12BA37C9BBBFC3DB3F6873A782709CA0758E8F615034C4A9D6E7B4B175495701C82A21D
sha3_384: 9d1ee6e8dd439e23e0014a1a4f7b0b8d2e67034f88d433eedb31dc1b24d25b881c4437721ef7af391667456c94054a04
ep_bytes: 558bec6aff68b8204000686618400064
timestamp: 2022-06-04 14:55:12


Version Info:

0: [No Data]

Graftor.895493 (B) also known as:

BkavW32.AIDetect.malware1
DrWebTrojan.PWS.Stealer.33380
CynetMalicious (score: 100)
FireEyeGeneric.mg.83a2432fdca3ffa5
McAfeeGenericRXAA-FA!83A2432FDCA3
CylanceUnsafe
K7AntiVirusTrojan ( 004bcce41 )
K7GWTrojan ( 004bcce41 )
Cybereasonmalicious.fdca3f
BitDefenderThetaGen:NN.ZexaF.34786.gmW@auF4XMe
SymantecML.Attribute.HighConfidence
Elasticmalicious (moderate confidence)
ESET-NOD32a variant of Win32/ClipBanker.JB
KasperskyHEUR:Trojan-Spy.Win32.Clipper.gen
BitDefenderGen:Variant.Graftor.895493
NANO-AntivirusTrojan.Win32.Clipper.jpgjom
MicroWorld-eScanGen:Variant.Graftor.895493
AvastWin32:dUmPeX [Susp]
Ad-AwareGen:Variant.Graftor.895493
SophosMal/Generic-S
VIPREGen:Variant.Graftor.895493
Trapminemalicious.high.ml.score
EmsisoftGen:Variant.Graftor.895493 (B)
IkarusTrojan.Win32.Clipbanker
JiangminTrojanSpy.Clipper.ck
MicrosoftProgram:Win32/Wacapew.C!ml
GDataGen:Variant.Graftor.895493
SentinelOneStatic AI – Malicious PE
VBA32BScope.TrojanSpy.Clipper
ALYacGen:Variant.Graftor.895493
MalwarebytesTrojan.ClipBanker
APEXMalicious
RisingSpyware.Clipper!8.BC31 (TFE:dGZlOgV0TYzNClsGhg)
MAXmalware (ai score=84)
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/ClipBanker.JB!tr
AVGWin32:dUmPeX [Susp]
CrowdStrikewin/malicious_confidence_100% (W)

How to remove Graftor.895493 (B)?

Graftor.895493 (B) removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment