Malware

Lazy.259333 malicious file

Malware Removal

The Lazy.259333 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Lazy.259333 virus can do?

  • Sample contains Overlay data
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • Reads data out of its own binary image
  • CAPE extracted potentially suspicious content
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid
  • Anomalous binary characteristics

How to determine Lazy.259333?



File Info:

name: F948B2748085CDF5B5DC.mlw
path: /opt/CAPEv2/storage/binaries/f0b06620a511811011ef8ef3990f7ec0314f87f457e5fbfbecd80c5a1e930f59
crc32: 57FEA9E3
md5: f948b2748085cdf5b5dc0f327c967535
sha1: 7ad0f82cccf7bb7c01a497733392072a500d7a63
sha256: f0b06620a511811011ef8ef3990f7ec0314f87f457e5fbfbecd80c5a1e930f59
sha512: 556408dd84ad24900c115dfe079407e4b187abdc411acb5e01258fba7630f90482e13dbb7236bba8ee3f44765b3f4dc2b22e78027de4b4c950de6e965a746913
ssdeep: 6144:TD0xis9SD3BMrUFL6eEid2MJSolqkHU/VPo84V9DHkT:f0xis9SLiWYd29U1v
type: PE32+ executable (GUI) x86-64, for MS Windows
tlsh: T10254AE69B7D008F9DD67C27CC9F28512E672385503A0EADB439486662F333D45E3EB92
sha3_384: b48a6b63cdff5e8ec58ad296b7cf89f94f1b6d6a0089bfd32113c526f4d1bc3f5e8e518133aec60aad13f36308c10fb1
ep_bytes: e848feffffc82000004c897c24f84883
timestamp: 2020-02-17 16:15:41


Version Info:

Comments: 
LegalCopyright: License: MPL 2
CompanyName: Mozilla Foundation
FileDescription: 
FileVersion: 73.0.1
ProductVersion: 73.0.1
InternalName: 
LegalTrademarks: Mozilla
OriginalFilename: maintenanceservice.exe
ProductName: Firefox
BuildID: 20200217142647
Translation: 0x0000 0x04b0

Lazy.259333 also known as:

DrWebWin32.HLLP.Azov.2
MicroWorld-eScanGen:Variant.Lazy.259333
McAfeeArtemis!F948B2748085
K7AntiVirusTrojan ( 0059a88d1 )
K7GWTrojan ( 0059a88d1 )
CyrenW64/Ipamor.A
SymantecML.Attribute.HighConfidence
ESET-NOD32Win64/Filecoder.GG
BitDefenderGen:Variant.Lazy.259333
Ad-AwareGen:Variant.Lazy.259333
EmsisoftGen:Variant.Lazy.259333 (B)
VIPREGen:Variant.Lazy.259333
McAfee-GW-EditionBehavesLike.Win64.BadFile.dc
FireEyeGen:Variant.Lazy.259333
GDataGen:Variant.Lazy.259333
JiangminTrojan.Blocker.urx
GoogleDetected
Antiy-AVLTrojan/Generic.ASBOL.C73A
ArcabitTrojan.Lazy.D3F505
MicrosoftTrojan:Win32/Wacatac.B!ml
CynetMalicious (score: 100)
AhnLab-V3Trojan/Win.Generic.R533911
ALYacGen:Variant.Lazy.259333
MAXmalware (ai score=87)
MalwarebytesMalware.AI.1053266483
RisingRansom.Agent!8.6B7 (TFE:2:U9tOTBNOHOO)
IkarusTrojan-Ransom.FileCrypter
FortinetW64/Filecoder.GG!tr
CrowdStrikewin/malicious_confidence_70% (D)

How to remove Lazy.259333?

Lazy.259333 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment