Lazy.259325 (B) removal tips

The Lazy.259325 (B) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Lazy.259325 (B) virus can do?

Sample contains Overlay data
The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid
Anomalous binary characteristics

How to determine Lazy.259325 (B)?


File Info:
name: EDD28E030A5FB1DE9766.mlw
path: /opt/CAPEv2/storage/binaries/5e2a47c3b8ea1a2c909871a950537dcb661ecd1486ab96d9fb903c675f73c545
crc32: 6B6C04DD
md5: edd28e030a5fb1de97664d27aa2d4a47
sha1: bb2cf303541c711c09df3013aa4a474ef4a706a9
sha256: 5e2a47c3b8ea1a2c909871a950537dcb661ecd1486ab96d9fb903c675f73c545
sha512: 9a14ef28896cc2f6c993b42b32b14cf4b328ab9f2661de3163e32f24888ebbe719201b30aa564e21ae98c10d2213cb878bfe0d54c9feddbc0ff18e111b87934b
ssdeep: 6144:1dXAd/BEc00d4fnFIDcls9AN7WY+fTu9jQHPXrbHdi:18qc4PFzs9GCmjQPrb9i
type: PE32+ executable (GUI) x86-64, for MS Windows
tlsh: T1F8645C43A24920BAD58BC07CAA479536F5717C090738B8DB5284EF326DA97E09F3DF85
sha3_384: 719c36f0186aad418f697ec33002f6ab412089a3b292c3e32ce0d9e16a5e9f097c1de3a6a442236b9eaaf132ca863a37
ep_bytes: e848feffffc82000004c897c24f84883
timestamp: 2019-05-07 02:33:38

Version Info:
Comments: 
LegalCopyright: License: MPL 2
CompanyName: Mozilla Foundation
FileDescription: 
FileVersion: 66.0.5
ProductVersion: 66.0.5
InternalName: 
LegalTrademarks: Mozilla
OriginalFilename: crashreporter.exe
ProductName: Firefox
BuildID: 20190507012018
Translation: 0x0000 0x04b0

Lazy.259325 (B) also known as:

Lionic	Trojan.Win32.Crypmodng.tsaK
MicroWorld-eScan	Gen:Variant.Lazy.259325
FireEye	Gen:Variant.Lazy.259325
McAfee	Artemis!EDD28E030A5F
Cylance	Unsafe
VIPRE	Gen:Variant.Lazy.259325
Alibaba	Trojan:Win64/Filecoder.8ff6c9fa
Cyren	W64/Ipamor.A
Symantec	Trojan.Gen.MBT
ESET-NOD32	Win64/Filecoder.GG
TrendMicro-HouseCall	TROJ_GEN.R011H0CK622
BitDefender	Gen:Variant.Lazy.259325
Cynet	Malicious (score: 99)
Avast	Win64:Trojan-gen
Tencent	Win32.Trojan.Filecoder.Jajl
Ad-Aware	Gen:Variant.Lazy.259325
Emsisoft	Gen:Variant.Lazy.259325 (B)
McAfee-GW-Edition	BehavesLike.Win64.BadFile.dh
Sophos	Mal/Generic-S
GData	Gen:Variant.Lazy.259325
Jiangmin	Trojan.Blocker.urx
Avira	TR/FileCoder.ownqd
MAX	malware (ai score=82)
Arcabit	Trojan.Lazy.D3F4FD
Microsoft	Trojan:Win32/Wacatac.B!ml
Google	Detected
AhnLab-V3	Malware/Win.Ransom.R532543
ALYac	Gen:Variant.Lazy.259325
Ikarus	Trojan-Ransom.FileCrypter
Rising	Ransom.Agent!8.6B7 (TFE:2:U9tOTBNOHOO)
Fortinet	W64/Filecoder.GG!tr
AVG	Win64:Trojan-gen

How to remove Lazy.259325 (B)?

Lazy.259325 (B) removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X