Lazy.363914 malicious file

The Lazy.363914 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Lazy.363914 virus can do?

The binary likely contains encrypted or compressed data.
Authenticode signature is invalid
Deletes executed files from disk
Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine Lazy.363914?


File Info:
name: 301F8247F2D015A80AE9.mlw
path: /opt/CAPEv2/storage/binaries/764c906f2da6818f529020b26d604b3b913cc4776f4cc7eeb1ab7996a8680867
crc32: 7A0E19D1
md5: 301f8247f2d015a80ae9bfa6707b298e
sha1: a5ad49e44b27406758a3eb65fb66b17ce6c891f5
sha256: 764c906f2da6818f529020b26d604b3b913cc4776f4cc7eeb1ab7996a8680867
sha512: a8469c00e956a189d94007079922aea1567d3efe2a11ca7c247c648f8d80568cec3ee9a97309153eef63d461c13ceb806d06047b2a794f6eef6c185229514e29
ssdeep: 393216:ZjvfBUbkG+WuTdownsBz9jnLnWc7e1v4Qe0cBG4iM4p:hBqbNmg97LlQe0cFW
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T1AFF6334BE696C4C4EE0318B960DAC6F1106DCD390E61D877239AB1B49F76BA1FC19837
sha3_384: 08491a2eeb1306ff8c7ff89e853492fb601ceaaa1c68e2e5896279c2c4f6d6f9620e729479512fac5bd108d471afcd3f
ep_bytes: e8a3020000e974feffff558bec8b4508
timestamp: 2023-11-07 20:54:30

Version Info:
0: [No Data]

Lazy.363914 also known as:

Bkav	W32.AIDetectMalware
Lionic	Trojan.Win32.Agent.Y!c
MicroWorld-eScan	Gen:Variant.Lazy.363914
FireEye	Gen:Variant.Lazy.363914
Skyhigh	BehavesLike.Win32.Generic.wc
ALYac	Gen:Variant.Lazy.363914
VIPRE	Gen:Variant.Lazy.363914
BitDefender	Gen:Variant.Lazy.363914
Cybereason	malicious.44b274
BitDefenderTheta	Gen:NN.ZexaF.36792.@xW@amsEsKm
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (high confidence)
APEX	Malicious
Kaspersky	HEUR:Trojan.Win32.Agent.gen
Alibaba	Trojan:Win32/GenSteal.7acc5110
Rising	Trojan.Kryptik!8.8 (TFE:5:IcJkmwuSscK)
F-Secure	Trojan.TR/AD.GenSteal.gafkg
Trapmine	malicious.high.ml.score
Emsisoft	Gen:Variant.Lazy.363914 (B)
MAX	malware (ai score=82)
GData	Gen:Variant.Lazy.363914
Avira	TR/AD.GenSteal.gafkg
Antiy-AVL	Trojan/Win32.Kryptik
Arcabit	Trojan.Lazy.D58D8A
ZoneAlarm	HEUR:Trojan.Win32.Agent.gen
Microsoft	Trojan:Win32/Wacatac.B!ml
Cynet	Malicious (score: 99)
DeepInstinct	MALICIOUS
Malwarebytes	Generic.Malware/Suspicious
Panda	Trj/Chgt.AD
TrendMicro-HouseCall	TROJ_GEN.R002H09K723
Tencent	Malware.Win32.Gencirc.13ed197e
AVG	Win32:CrypterX-gen [Trj]
Avast	Win32:CrypterX-gen [Trj]
CrowdStrike	win/malicious_confidence_60% (W)

How to remove Lazy.363914?

Lazy.363914 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X