Graftor.963908 removal instruction

The Graftor.963908 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Graftor.963908 virus can do?

The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid

How to determine Graftor.963908?


File Info:
name: A4A4E752DE6355A7A072.mlw
path: /opt/CAPEv2/storage/binaries/6f3e0aca02672e9e697be522e08a5bd08656177838f04b9528d76e911e40578a
crc32: E29C9F5D
md5: a4a4e752de6355a7a0727124b792ed20
sha1: 3a2547705cbbba8397bd99436aa8660e4c0f28ff
sha256: 6f3e0aca02672e9e697be522e08a5bd08656177838f04b9528d76e911e40578a
sha512: 1dc228fc063eab9f2abe5c58886d542191259d9d22ec0d7f3890863c992532b16ff9fb34e46d37d15882f9c6cc8951553f1b5290c0f353723f762d03aacefaba
ssdeep: 12288:W85yCuB82Pk9kZAQxJm1i6Y49Ht6uhfhAFt2yPazq/jcJWbQ:WoyCJI2kZYY49NjNI
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T15CF48D0EB69200FEC57215349AAE9B31F2B957411F3E4EC3CBA0CF5C4A654D1B93627A
sha3_384: 7ec5716cec0ea52456cd1309d900cab4a30c619cf77b7ce46e1305d421883319758353f42628823b60ebf5751d4344f9
ep_bytes: 558bec6aff683035480068c816470064
timestamp: 1998-12-06 15:54:38

Version Info:
0: [No Data]

Graftor.963908 also known as:

Lionic	Trojan.Win32.Graftor.4!c
MicroWorld-eScan	Gen:Variant.Graftor.963908
FireEye	Gen:Variant.Graftor.963908
CAT-QuickHeal	Trojan.Graftor
McAfee	Artemis!A4A4E752DE63
Sangfor	Trojan.Win32.Agent.V2zw
Cybereason	malicious.05cbbb
Arcabit	Trojan.Graftor.DEB544
VirIT	Win32.Sality.AA
Cyren	W32/SuspPack.FW.gen!Eldorado
Symantec	ML.Attribute.HighConfidence
BitDefender	Gen:Variant.Graftor.963908
Avast	Win32:Virtu-F [Inf]
Emsisoft	Gen:Variant.Graftor.963908 (B)
VIPRE	Gen:Variant.Graftor.963908
McAfee-GW-Edition	BehavesLike.Win32.Infected.bm
Google	Detected
MAX	malware (ai score=83)
Microsoft	Trojan:Win32/Wacatac.B!ml
GData	Gen:Variant.Graftor.963908
ALYac	Gen:Variant.Graftor.963908
Cylance	unsafe
TrendMicro-HouseCall	TROJ_GEN.R002H0CDP23
Rising	Trojan.Generic@AI.80 (RDML:FP8EH66CxZyLrCwiVC9FrQ)
MaxSecure	Trojan.Malware.119572229.susgen
Fortinet	W32/CoinMiner.F
AVG	Win32:Virtu-F [Inf]
DeepInstinct	MALICIOUS

How to remove Graftor.963908?

Graftor.963908 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X