Malware

Lazy.208664 removal tips

Malware Removal

The Lazy.208664 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Lazy.208664 virus can do?

  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX
  • Authenticode signature is invalid
  • CAPE detected the Greame malware family
  • Checks for the presence of known devices from debuggers and forensic tools
  • Checks for the presence of known devices from debuggers and forensic tools
  • Checks the CPU name from registry, possibly for anti-virtualization
  • Checks the presence of disk drives in the registry, possibly for anti-virtualization
  • Collects information to fingerprint the system
  • Yara detections observed in process dumps, payloads or dropped files

How to determine Lazy.208664?



File Info:

name: CEF311DB52BBAEF64D75.mlw
path: /opt/CAPEv2/storage/binaries/f7bf0c9efd52a49f477b567b9c399c6643e462bfc35cc50c7b5b4f329668a124
crc32: 335A8AD4
md5: cef311db52bbaef64d75e46d3595db5e
sha1: 204d791d17f5ec8e9130aae3fa3b2d5e1ba74bf3
sha256: f7bf0c9efd52a49f477b567b9c399c6643e462bfc35cc50c7b5b4f329668a124
sha512: f30b848439bef782a36dc5b1835e217af0318b4e5af03d4f3ea9a7f01ce9fbed3aeefb51457b4f3a86060b5ed71d1fd814778d25e18a8c253cff1024b31df024
ssdeep: 6144:v58ib3vwKryfkRNFbbJCuo3Bu2rt6owoIWg9hryEwi/gUXYJm1wUTMeBFj:v58ibfBrCqNFbbsuwBT6FSg9hrybUXr7
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1E184234AE57969DCC9D31432AA2DBDEEE7BD520729C0E4D14E80DA748E7D4E0C622783
sha3_384: 007682e01d887d99ce664c72bb770a0d992e2dad8ccb3cf1a8a646bd62e9dae2811e90ab1f40300978939b23bfdcc919
ep_bytes: fc5550e8000000005d60e80300000083
timestamp: 1992-06-19 22:22:17


Version Info:

0: [No Data]

Lazy.208664 also known as:

BkavW32.AIDetectMalware
LionicTrojan.Win32.Generic.lzIt
MicroWorld-eScanGen:Variant.Lazy.208664
FireEyeGeneric.mg.cef311db52bbaef6
SkyhighBehavesLike.Win32.Generic.fc
McAfeeArtemis!CEF311DB52BB
MalwarebytesMachineLearning/Anomalous.100%
ZillyaTrojan.Zbot.Win32.78101
SangforTrojan.Win32.Save.a
K7AntiVirusTrojan ( 004bcce41 )
AlibabaTrojan:Win32/HckPk.d3053ee5
K7GWTrojan ( 004bcce41 )
CrowdStrikewin/malicious_confidence_100% (W)
ArcabitTrojan.Lazy.D32F18
BitDefenderThetaAI:Packer.F4127D561E
VirITTrojan.Win32.Generic.EVG
SymantecML.Attribute.HighConfidence
Elasticmalicious (moderate confidence)
ESET-NOD32Win32/Spatet.AA
CynetMalicious (score: 99)
APEXMalicious
ClamAVWin.Worm.Explorerhijack-6999913-0
KasperskyHEUR:Trojan.Win32.Generic
BitDefenderGen:Variant.Lazy.208664
NANO-AntivirusTrojan.Win32.Zbot.ynabj
AvastWin32:Evo-gen [Trj]
RisingSpyware.Rebhip!8.13546 (TFE:5:DQUtSBSziWH)
EmsisoftGen:Variant.Lazy.208664 (B)
F-SecureDropper.DR/Delphi.Gen
VIPREGen:Variant.Lazy.208664
SophosMal/HckPk-A
IkarusTrojan.Win32.StartPage
JiangminTrojan/Generic.aiheq
WebrootW32.Trojan.Gen
AviraDR/Delphi.Gen
MAXmalware (ai score=99)
Antiy-AVLTrojan[Spy]/Win32.Zbot
KingsoftWin32.HeurC.KVMH008.a
XcitiumMalware@#21q8ujy673xfu
MicrosoftTrojan:Win32/Wacatac.B!ml
ZoneAlarmHEUR:Trojan.Win32.Generic
GDataGen:Variant.Lazy.208664
GoogleDetected
VBA32TrojanSpy.Zbot
ALYacGen:Variant.Lazy.208664
Cylanceunsafe
PandaTrj/CI.A
ZonerProbably Heur.ExeHeaderL
TencentWin32.Trojan.Generic.Pcnw
YandexTrojan.GenAsa!AWEjz5WwX00
SentinelOneStatic AI – Malicious PE
FortinetMalware_fam.NB
AVGWin32:Evo-gen [Trj]
DeepInstinctMALICIOUS

How to remove Lazy.208664?

Lazy.208664 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment