Malware

What is “Graftor.962297 (B)”?

Malware Removal

The Graftor.962297 (B) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Graftor.962297 (B) virus can do?

  • Unconventionial language used in binary resources: Chinese (Simplified)
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX

How to determine Graftor.962297 (B)?



File Info:

crc32: 3272A099
md5: 5403295414c9933f6ff97b2bbf59a030
name: 5403295414C9933F6FF97B2BBF59A030.mlw
sha1: 795c7a33d89b14b70043ced1893a5d05b4192e82
sha256: 82703920967b2662edee38699e06f7ba0ecc0aa8d5d1be38872c7544c2fd6397
sha512: b94506c45853b07d067527600a54104ed2faa380fcf21dbb99b8b1784a033afe7bedccfc9ede3089cb4f1fd7f98565787eac680f887b820ddaeb7fea66b2cc08
ssdeep: 12288:vrNGpk3ojsCvF2ZQHnqsoMgA8ef7DeeYiL:B2k3ojBounqspWeueYiL
type: PE32 executable (console) Intel 80386, for MS Windows, UPX compressed


Version Info:

LegalCopyright: (c) Microsoft Corporation. All rights reserved.
InternalName: winaudio.exe
FileVersion: 1.0.0.1
CompanyName: Microsoft Corporation
ProductName: winaudio.exe
ProductVersion: 1.0.0.1
FileDescription: winaudio.exe
OriginalFilename: winaudio.exe
Translation: 0x0409 0x04b0

Graftor.962297 (B) also known as:

K7AntiVirusTrojan ( 005776e01 )
Elasticmalicious (high confidence)
DrWebTrojan.DownLoader39.20590
CynetMalicious (score: 100)
ALYacGen:Variant.Graftor.962297
ZillyaTrojan.Agent.Win32.2176815
SangforTrojan.Win32.Save.a
CrowdStrikewin/malicious_confidence_80% (W)
K7GWTrojan ( 005776e01 )
Cybereasonmalicious.414c99
CyrenW32/Agent.CHX.gen!Eldorado
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/Agent.ULI
APEXMalicious
AvastWin32:TrojanX-gen [Trj]
ClamAVWin.Malware.Trojanx-9870302-0
KasperskyHEUR:Trojan.Win32.Mimdau.gen
BitDefenderGen:Variant.Graftor.962297
NANO-AntivirusTrojan.Win32.Mimdau.iwiyke
MicroWorld-eScanGen:Variant.Graftor.962297
TencentMalware.Win32.Gencirc.10ce5888
Ad-AwareGen:Variant.Graftor.962297
SophosTroj/Agent-BGQT
ComodoMalware@#7xdio8wug2xn
BitDefenderThetaGen:NN.ZexaF.34236.JmMfampjD4pj
VIPRETrojan.Win32.Generic!BT
TrendMicroTROJ_GEN.R035C0PFF21
McAfee-GW-EditionBehavesLike.Win32.Fake.hc
FireEyeGen:Variant.Graftor.962297
EmsisoftGen:Variant.Graftor.962297 (B)
SentinelOneStatic AI – Malicious PE
JiangminTrojan-Spy.AveMaria.a
AviraHEUR/AGEN.1142358
Antiy-AVLTrojan/Generic.ASMalwS.336EB38
MicrosoftTrojan:Win32/Wacatac.B!ml
GDataGen:Variant.Graftor.962297
AhnLab-V3Trojan/Win.Generic.R434216
McAfeeGenericRXAA-FA!5403295414C9
MAXmalware (ai score=87)
VBA32BScope.Trojan.Mimdau
MalwarebytesTrojan.Crypt
PandaTrj/Genetic.gen
TrendMicro-HouseCallTROJ_GEN.R035C0PFF21
YandexTrojan.Mimdau!vxS8U7H4EbY
IkarusTrojan.Win32.Agent
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/Agent.ULI!tr
AVGWin32:TrojanX-gen [Trj]

How to remove Graftor.962297 (B)?

Graftor.962297 (B) removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment