Malware

Lazy.192231 malicious file

Malware Removal

The Lazy.192231 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Lazy.192231 virus can do?

  • Dynamic (imported) function loading detected
  • CAPE extracted potentially suspicious content
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • Anomalous binary characteristics

How to determine Lazy.192231?



File Info:

name: 1A3199AE221054757890.mlw
path: /opt/CAPEv2/storage/binaries/1c3ed9be225a7970de3d42b584f80b869ba51bf4f7a886913548c49aa7343ff1
crc32: E4A380FF
md5: 1a3199ae2210547578907773495190c9
sha1: 3d120cdc9691279c8259b24c6c9e352d3d705cae
sha256: 1c3ed9be225a7970de3d42b584f80b869ba51bf4f7a886913548c49aa7343ff1
sha512: 67bf94dd85430a71bc6014bb91c09f6ea17cdd273b40eb6a400d01b4d1c9f3ceb5fbed6b67543427ee9fd3667b6b8847d1282b0e316bdbb4c91641416e2824fd
ssdeep: 12288:YHxdSsVZkoJHTCzac/osSLQZah/ZoKXMUEP42lBTRe:85HiaRzQcZoKXMpHBTRe
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T10B05CF2533ACD72BC66F9A72C0B2549D4271F40B7CA3FF650508FAD8396AB858DC1672
sha3_384: 81eb49f4aae2ed07a66beb4969496be21add48652eed0586d5e4b9e8b19b0c70411a261e6a8b8e52f521f0f4327b60ae
ep_bytes: ff250020400000000000000000000000
timestamp: 2019-12-05 17:21:57


Version Info:

Assembly Version: 16.0.0.0
Comments: 2ca117e0
CompanyName: Microsoft Corporation
FileDescription: Microsoft.TeamFoundation.Build2.WebApi.dll
FileVersion: 16.133.29605.1 built by: releases/dev16.4vs (757c82e0d2)
InternalName: Microsoft.TeamFoundation.Build2.WebApi.dll
LegalCopyright: © Microsoft Corporation. All rights reserved.
OriginalFilename: Microsoft.TeamFoundation.Build2.WebApi.dll
ProductName: Microsoft® Visual Studio® Team Foundation Server®
ProductVersion: 16.133.29605.1
Translation: 0x0409 0x04b0

Lazy.192231 also known as:

Elasticmalicious (high confidence)
CAT-QuickHealTrojan.YakbeexMSIL.ZZ4
McAfeeGenericRXSF-WC!1A3199AE2210
CylanceUnsafe
CyrenW32/MSIL_Kryptik.GNB.gen!Eldorado
APEXMalicious
CynetMalicious (score: 100)
BitDefenderGen:Variant.Lazy.192231
MicroWorld-eScanGen:Variant.Lazy.192231
Ad-AwareGen:Variant.Lazy.192231
EmsisoftGen:Variant.Lazy.192231 (B)
McAfee-GW-EditionGenericRXSF-WC!1A3199AE2210
FireEyeGen:Variant.Lazy.192231
IkarusTrojan-Spy.Agent
GDataGen:Variant.Lazy.192231
ArcabitTrojan.Lazy.D2EEE7
MicrosoftTrojan:Win32/Wacatac.B!ml
ALYacGen:Variant.Lazy.192231
MAXmalware (ai score=85)
MalwarebytesTrojan.Crypt.MSIL.Generic

How to remove Lazy.192231?

Lazy.192231 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment