Malware

About “Lazy.255787” infection

Malware Removal

The Lazy.255787 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Lazy.255787 virus can do?

  • Sample contains Overlay data
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid
  • Anomalous binary characteristics

How to determine Lazy.255787?



File Info:

name: 80AA033C3FF59501FFE0.mlw
path: /opt/CAPEv2/storage/binaries/1ffdf081b8daed4309b29b473bf3332ca137fb25ac420181edbd2fa88ca77e9a
crc32: BCF3043F
md5: 80aa033c3ff59501ffe02074990ed4cb
sha1: a20227a2f518602240f4923271246e3e0f872dcc
sha256: 1ffdf081b8daed4309b29b473bf3332ca137fb25ac420181edbd2fa88ca77e9a
sha512: 18d9af95804e642abc38349794daa21e404189c84ceec75004bd74634085be69e712a3a6940f909a9effaa2f95bc4f7f0faac1f921e55167ae6e06d557d3257e
ssdeep: 49152:fvaTp9xNhIUtF1PXe8PNgZgXn1waTTbeOb:+pbxUgoC
type: PE32+ executable (GUI) x86-64, for MS Windows
tlsh: T157A53951ABE8C0F9E2A7E2788975C9B5F6B2BC925D30970F2155C71F1F336A09D28321
sha3_384: 676008fd80318fabe2946550d270bca22394149c01c771d9f33e8684fcf2ab710f9fe536f92294480a1acf929a93ce6b
ep_bytes: e848feffffc82000004c897c24f84883
timestamp: 2020-02-12 21:58:04


Version Info:

CompanyName: Microsoft Corporation
FileDescription: Microsoft Office component
FileVersion: 16.0.12430.20288
InternalName: msoadfsb
LegalTrademarks1: Microsoft® is a registered trademark of Microsoft Corporation.
LegalTrademarks2: Windows® is a registered trademark of Microsoft Corporation.
OriginalFilename: msoadfsb.exe
ProductName: Microsoft Office
ProductVersion: 16.0.12430.20288
Translation: 0x0000 0x04e4

Lazy.255787 also known as:

MicroWorld-eScanGen:Variant.Lazy.255787
FireEyeGen:Variant.Lazy.255787
ALYacGen:Variant.Lazy.255787
K7AntiVirusTrojan ( 0059a88d1 )
K7GWTrojan ( 0059a88d1 )
ArcabitTrojan.Lazy.D3E72B
CyrenW64/Ipamor.A
ESET-NOD32Win64/Filecoder.GG
BitDefenderGen:Variant.Lazy.255787
AvastWin64:Trojan-gen
Ad-AwareGen:Variant.Lazy.255787
EmsisoftGen:Variant.Lazy.255787 (B)
DrWebWin32.HLLP.Azov.2
VIPREGen:Variant.Lazy.255787
IkarusVirus.Win64.Expiro
JiangminTrojan.Blocker.urx
MAXmalware (ai score=88)
Antiy-AVLTrojan/Generic.ASBOL.C73A
GDataGen:Variant.Lazy.255787
GoogleDetected
MalwarebytesMalware.AI.1053266483
RisingRansom.Agent!8.6B7 (TFE:2:U9tOTBNOHOO)
FortinetW64/Filecoder.GG!tr
AVGWin64:Trojan-gen
CrowdStrikewin/malicious_confidence_90% (D)

How to remove Lazy.255787?

Lazy.255787 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment