Lazy.259104 malicious file

The Lazy.259104 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Lazy.259104 virus can do?

Sample contains Overlay data
Authenticode signature is invalid
Anomalous binary characteristics
Binary compilation timestomping detected

How to determine Lazy.259104?


File Info:
name: 177090789F91E5AF9EB9.mlw
path: /opt/CAPEv2/storage/binaries/7b674a18dca7c83af4cdee9216e6fdcb5372b343c4727d472b761ed15ab05c79
crc32: C20534FC
md5: 177090789f91e5af9eb97af529de9970
sha1: 1bd317f04f977b9684c0bd5c698f742d43efb78f
sha256: 7b674a18dca7c83af4cdee9216e6fdcb5372b343c4727d472b761ed15ab05c79
sha512: 0c3c18f80707060c2d09f5a7f2d9521c25c1bba04fa7ad80f32bd025bc7145f58e345dc7f01465e4eb5230bd9822a553bfbae0b614a75ac495a4067363fd474d
ssdeep: 6144:J87Hfy4eKJuHIgSXs9o5PkU0to7YDhDCmtPJP7opDEZ3t:a/y4rJuozs9DjtosDBCmtBEpS3t
type: PE32+ executable (console) x86-64, for MS Windows
tlsh: T1ED942C6569C0752BE173A235CB91D242FF36B7A34721832FB1CC476F1F76185AA23622
sha3_384: b54720f24f1e0f1bb2be0032ab699237b2c912409304125031b6db1a52cd6134284a21db3d4a2ddb2502d92d4381e4cd
ep_bytes: e848feffffc82000004c897c24f84883
timestamp: 2095-01-18 00:53:12

Version Info:
CompanyName: Microsoft Corporation
FileDescription: sedlauncher
FileVersion: 10.0.17134.2260 (WinBuild.160101.0800)
InternalName: sedlauncher
LegalCopyright: © Microsoft Corporation. All rights reserved.
OriginalFilename: sedlauncher
ProductName: Microsoft® Windows® Operating System
ProductVersion: 10.0.17134.2260
Translation: 0x0409 0x04b0

Lazy.259104 also known as:

MicroWorld-eScan	Gen:Variant.Lazy.259104
FireEye	Gen:Variant.Lazy.259104
ALYac	Gen:Variant.Lazy.259104
Cylance	Unsafe
Cyren	W64/Ipamor.A
Symantec	Trojan.Gen.2
ESET-NOD32	Win64/Filecoder.GG
TrendMicro-HouseCall	TROJ_GEN.R002H0DK622
ClamAV	Win.Virus.Expiro-9975085-0
Kaspersky	VHO:Trojan-PSW.Win32.Stealer.gen
BitDefender	Gen:Variant.Lazy.259104
Avast	FileRepMalware [Inf]
Ad-Aware	Gen:Variant.Lazy.259104
Emsisoft	Gen:Variant.Lazy.259104 (B)
VIPRE	Gen:Variant.Lazy.259104
McAfee-GW-Edition	Artemis!Trojan
Sophos	Mal/Generic-S
GData	Gen:Variant.Lazy.259104
Jiangmin	Trojan.Blocker.urx
Google	Detected
MAX	malware (ai score=80)
Arcabit	Trojan.Lazy.D3F420
Microsoft	Trojan:Win32/Wacatac.B!ml
Cynet	Malicious (score: 100)
Acronis	suspicious
McAfee	Artemis!177090789F91
Malwarebytes	Ransom.Azov
Fortinet	W64/Filecoder.GG!tr
AVG	FileRepMalware [Inf]

How to remove Lazy.259104?

Lazy.259104 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X