Malware

What is “Lazy.236775”?

Malware Removal

The Lazy.236775 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Lazy.236775 virus can do?

  • CAPE extracted potentially suspicious content
  • Authenticode signature is invalid
  • Binary compilation timestomping detected

How to determine Lazy.236775?



File Info:

name: 83DACAA102C161BAD95E.mlw
path: /opt/CAPEv2/storage/binaries/6eff757ce4c9bec38ce3446fa35e390f4f77d9220fc0969e96c8baff49050c81
crc32: 33D21F4E
md5: 83dacaa102c161bad95e7109a580da52
sha1: 34b5c74aaf9fa5c6d97c9c3d23e7e11e42eb64b2
sha256: 6eff757ce4c9bec38ce3446fa35e390f4f77d9220fc0969e96c8baff49050c81
sha512: 655e8d57c526137b8b2654251c4a58d1c845df350a451ba453f627aaf9abc7f786bfeace6688e9923ad597fe7f84986070346333651b8e1aab43f8aec4da86a2
ssdeep: 384:Vp1TSw5QBIuIuMjizbSXmjyuyhs8sdk0EQHkkbjkeyuw0yGpnohzvtHeaP6f7jfi:Vp1TS+7pjHmf7kD
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T193A2F808A3FCC255F6FF2F39AD7052204BB379069E31D61E1655207D0A63BB5C9A0B67
sha3_384: 6aa24e6a6263fea9f0a93fbc20a74a332d45c23b68826cf17790116ca02fa64fa42d6bfb8b88407d7adf368644c726b6
ep_bytes: ff250020400000000000000000000000
timestamp: 2100-12-13 18:51:30


Version Info:

Translation: 0x0000 0x04b0
Comments: 
CompanyName: 
FileDescription: RemoteProcessKill
FileVersion: 1.0.0.0
InternalName: RemoteProcessKill.exe
LegalCopyright: Copyright ©  2022
LegalTrademarks: 
OriginalFilename: RemoteProcessKill.exe
ProductName: RemoteProcessKill
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

Lazy.236775 also known as:

LionicTrojan.Win32.Heracles.4!c
Elasticmalicious (moderate confidence)
MicroWorld-eScanGen:Variant.Lazy.236775
FireEyeGen:Variant.Lazy.236775
ALYacGen:Variant.Lazy.236775
MalwarebytesMalware.AI.3519244173
K7AntiVirusTrojan ( 005930e41 )
AlibabaTrojan:MSIL/FakeFilecoder.d2208c08
K7GWTrojan ( 005930e41 )
CyrenW32/Cerbu.BJ.gen!Eldorado
SymantecTrojan.Gen.2
ESET-NOD32a variant of MSIL/FakeFilecoder.D
APEXMalicious
CynetMalicious (score: 99)
BitDefenderGen:Variant.Lazy.236775
Ad-AwareGen:Variant.Lazy.236775
EmsisoftGen:Variant.Lazy.236775 (B)
F-SecureTrojan.TR/Redcap.rszwl
VIPREGen:Variant.Lazy.236775
SophosMal/Generic-S + Mal/ProcKill-A
SentinelOneStatic AI – Suspicious PE
AviraTR/Redcap.rszwl
MAXmalware (ai score=84)
ArcabitTrojan.Lazy.D39CE7
GDataGen:Variant.Lazy.236775
GoogleDetected
AhnLab-V3Trojan/Win.Generic.C5227008
TrendMicro-HouseCallTROJ_GEN.R002C0RHO22
RisingTrojan.FakeFilecoder!8.10894 (CLOUD)
IkarusTrojan-Ransom.FileCrypter
PandaTrj/Chgt.AD

How to remove Lazy.236775?

Lazy.236775 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment