Malware

Lazy.259363 removal

Malware Removal

The Lazy.259363 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Lazy.259363 virus can do?

  • Sample contains Overlay data
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • Reads data out of its own binary image
  • CAPE extracted potentially suspicious content
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid
  • Exhibits possible ransomware file modification behavior
  • Anomalous binary characteristics

How to determine Lazy.259363?



File Info:

name: 6165AECB998B2B6E0EDB.mlw
path: /opt/CAPEv2/storage/binaries/9b7ad772c244696c9948590fc2beea7ab5d119f2c0c5ce5685868dce4cb2d42f
crc32: C25A04B4
md5: 6165aecb998b2b6e0edb259b3a5dc93f
sha1: 125f69e70d21a68968e637a3697229214fa5cf95
sha256: 9b7ad772c244696c9948590fc2beea7ab5d119f2c0c5ce5685868dce4cb2d42f
sha512: bb1b2d63cbb464a360ebb4e3aa33dee2a79a8f74a2a031f72907a476857c929f8edd99a63dcee16af259d8ba6c007c06ae7be418d3984fc0d29d259a590e87fa
ssdeep: 49152:9wzcrS+JxyAa507NUUWn043oHS3f7YwVq1/xT3DDbw0TUqyJ+b+://hhSDYw8yA6
type: PE32+ executable (GUI) x86-64, for MS Windows
tlsh: T154D55C13B3F941DCF0AAE2B8D7754632DAB2BC538B34A5DF125012191E76EE05B39722
sha3_384: bdcac6979b80bc8c04b525209fef1d150463878a67a1276578b1a87455adb1fc93278a2b4545d270a1c259afe5148570
ep_bytes: e848feffffc82000004c897c24f84883
timestamp: 2021-07-30 19:13:12


Version Info:

CompanyName: Google LLC
FileDescription: Google Chrome Installer
FileVersion: 92.0.4515.131
InternalName: setup
LegalCopyright: Copyright 2021 Google LLC. All rights reserved.
ProductName: Google Chrome Installer
ProductVersion: 92.0.4515.131
CompanyShortName: Google
ProductShortName: Chrome Installer
LastChange: 6b8d6c56ce21e38a72f7c4becb5abc1fa5134f29-refs/branch-heads/4515@#1933
Official Build: 1
Translation: 0x0409 0x04b0

Lazy.259363 also known as:

MicroWorld-eScanGen:Variant.Lazy.259363
ALYacGen:Variant.Lazy.259363
CrowdStrikewin/malicious_confidence_90% (D)
CyrenW64/Ipamor.A
Elasticmalicious (moderate confidence)
ESET-NOD32Win64/Filecoder.GG
CynetMalicious (score: 100)
BitDefenderGen:Variant.Lazy.259363
Ad-AwareGen:Variant.Lazy.259363
EmsisoftGen:Variant.Lazy.259363 (B)
DrWebTrojan.Encoder.36209
VIPREGen:Variant.Lazy.259363
FireEyeGen:Variant.Lazy.259363
GDataGen:Variant.Lazy.259363
JiangminTrojan.Blocker.urx
ArcabitTrojan.Lazy.D3F523
GoogleDetected
Acronissuspicious
MAXmalware (ai score=87)
MalwarebytesRansom.Azov
RisingRansom.Agent!8.6B7 (TFE:2:U9tOTBNOHOO)
IkarusWorm.Win32.Xolxo
FortinetW64/Filecoder.GG!tr
Cybereasonmalicious.70d21a

How to remove Lazy.259363?

Lazy.259363 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment