Should I remove “Lazy.259021”?

The Lazy.259021 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Lazy.259021 virus can do?

Yara rule detections observed from a process memory dump/dropped files/CAPE
The binary likely contains encrypted or compressed data.
Authenticode signature is invalid
CAPE detected the RedLine malware family

How to determine Lazy.259021?


File Info:
name: FA55A6599D03661A0CE3.mlw
path: /opt/CAPEv2/storage/binaries/65b304191d8e735426eb1cb013530de1065211b97ce7143405f28291e9bb3fb2
crc32: E841C7E3
md5: fa55a6599d03661a0ce37eeb09afe060
sha1: e26680716e15953a89d4ffc724a2a897a8780db1
sha256: 65b304191d8e735426eb1cb013530de1065211b97ce7143405f28291e9bb3fb2
sha512: 522971bf0a8692b43d5b0b555fe89e3ff0ecaad6b15b5bac5ba78af41b405254557d0c17e0904833f0326434b4002f7335ef63ff6d1181d9263dc599c2bbc09d
ssdeep: 12288:1Koc9+s4eE2t372yFwE78JYy5Ep8AGEiwBt4QUGFlHyv8IuKkIWrVIY/zA3OocVJ:UocV4eE2B72yFwEgHEiutxUGFy8VHVq+
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T113F48C1239D18036DBB235320665B6B05AAEB4311B3356EFDBD8063D2F245E16FF253A
sha3_384: de47747986412150c83c1ae4a985df7037ccfb711e669f9c526b7e3a6f32dd5601fdd57eca190c66d2b250a9e195c306
ep_bytes: e8030b0000e917feffff558bec8b4508
timestamp: 2022-10-31 09:41:43

Version Info:
0: [No Data]

Lazy.259021 also known as:

Elastic	malicious (high confidence)
MicroWorld-eScan	Gen:Variant.Lazy.259021
FireEye	Generic.mg.fa55a6599d03661a
ALYac	Gen:Variant.Lazy.259021
Cylance	Unsafe
K7AntiVirus	Trojan ( 0059a1f41 )
Cyren	W32/Kryptik.HUC.gen!Eldorado
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win32/Kryptik.HRCM
APEX	Malicious
Cynet	Malicious (score: 100)
Kaspersky	HEUR:Trojan-Spy.Win32.Stealer.gen
BitDefender	Gen:Variant.Lazy.259021
Avast	Win32:CrypterX-gen [Trj]
Ad-Aware	Gen:Variant.Lazy.259021
DrWeb	Trojan.PWS.StealerNET.125
McAfee-GW-Edition	Artemis
Trapmine	malicious.moderate.ml.score
Emsisoft	Gen:Variant.Lazy.259021 (B)
Ikarus	Trojan.Win32.RedlineStealer
GData	Gen:Variant.Lazy.259021
Avira	TR/AD.RedLineSteal.eiatm
Arcabit	Trojan.Lazy.D3F3CD
ZoneAlarm	HEUR:Trojan-Spy.Win32.Stealer.gen
Microsoft	Trojan:Win32/Sabsik.FL.B!ml
Google	Detected
AhnLab-V3	Trojan/Win.Generic.C5289142
Acronis	suspicious
McAfee	Artemis!FA55A6599D03
MAX	malware (ai score=84)
Malwarebytes	Malware.AI.1882267601
Rising	Trojan.Kryptik!8.8 (TFE:5:8nemQecKCHR)
SentinelOne	Static AI – Suspicious PE
Fortinet	W32/DotNetPacker.I!tr
BitDefenderTheta	Gen:NN.ZexaF.34754.TqW@a4u4Y@l
AVG	Win32:CrypterX-gen [Trj]

How to remove Lazy.259021?

Lazy.259021 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X