About “Lazy.104698 (B)” infection

The Lazy.104698 (B) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Lazy.104698 (B) virus can do?

The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid
Anomalous binary characteristics

How to determine Lazy.104698 (B)?


File Info:
name: B03BC21191CE30E3871F.mlw
path: /opt/CAPEv2/storage/binaries/a914e22e735a563249eeee51b33c9d9817bd1813af9d42ae5de9115ca6cb87da
crc32: D1E06856
md5: b03bc21191ce30e3871fdf27930db145
sha1: 2e8153b269727664fb43a88b1c7b1e8470c1eb0e
sha256: a914e22e735a563249eeee51b33c9d9817bd1813af9d42ae5de9115ca6cb87da
sha512: dd18f6a08449c5e922bdbade3fec3d150d981deb2eb72967a45d9ef80f13d7e07f2c9e203eaa2f5b1c0d93a8103c3f044420fc7017bcbb09b06c07999db5ce3b
ssdeep: 24576:DCpKpUOap8QJrRoNk7BZpWcuzKPgssStPUvgMAuDzxW:upk/ap8QJrRokpWhKPgssSt2gKDzx
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T139B5E7117AEF9726ECB226708F7C86A049617CA05BF5C51B36D0366EC93354CA92F723
sha3_384: 6718bdd7599e12f613578214f2da7269997d88b1e77589d58b06cea5d7fd5c56e1ee66b744c4099992558c1b6c4551f9
ep_bytes: e805000000e968feffff8b0d0c304300
timestamp: 2021-11-03 15:17:50

Version Info:
0: [No Data]

Lazy.104698 (B) also known as:

Elastic	malicious (high confidence)
MicroWorld-eScan	Gen:Variant.Lazy.104698
FireEye	Generic.mg.b03bc21191ce30e3
ALYac	Gen:Variant.Lazy.104698
Zillya	Trojan.Kryptik.Win32.3665987
Sangfor	Trojan.Win32.Save.a
Cyren	W32/Lazy.F.gen!Eldorado
TrendMicro-HouseCall	TROJ_GEN.R03BH0CAU22
ClamAV	Win.Malware.Generic-9870238-0
Kaspersky	VHO:Trojan.Win32.Sdum.gen
BitDefender	Gen:Variant.Lazy.104698
APEX	Malicious
Ad-Aware	Gen:Variant.Lazy.104698
Sophos	Generic ML PUA (PUA)
McAfee-GW-Edition	BehavesLike.Win32.Generic.vm
Emsisoft	Gen:Variant.Lazy.104698 (B)
Ikarus	Trojan.VB.Agent
GData	Win32.Trojan.PSE.DJ4CW9
Jiangmin	Packed.Krap.gvuf
MAX	malware (ai score=85)
Microsoft	Trojan:Win32/Sabsik.FL.B!ml
Cynet	Malicious (score: 100)
AhnLab-V3	Malware/Win.Generic.R469149
SentinelOne	Static AI – Malicious PE
Fortinet	W32/Agent.C933!tr

How to remove Lazy.104698 (B)?

Lazy.104698 (B) removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X