Malware

Lazy.414556 removal

Malware Removal

The Lazy.414556 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Lazy.414556 virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Executed a command line with /C or /R argument to terminate command shell on completion which can be used to hide execution
  • Sample contains Overlay data
  • Uses Windows utilities for basic functionality
  • CAPE extracted potentially suspicious content
  • The binary contains an unknown PE section name indicative of packing
  • The executable is compressed using UPX
  • Authenticode signature is invalid
  • Uses Windows utilities to create a scheduled task
  • Behavioural detection: Transacted Hollowing
  • Creates a copy of itself
  • Deletes executed files from disk
  • Collects information to fingerprint the system
  • Uses suspicious command line tools or Windows utilities
  • Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine Lazy.414556?



File Info:

name: BF082983269F4D02FB1E.mlw
path: /opt/CAPEv2/storage/binaries/5c9b984a73fb4fa0c2bbd5aec559e87b4b03eee3e2cb9ab0e3423cf3fddff4d9
crc32: 70D6A04F
md5: bf082983269f4d02fb1e81dea8041696
sha1: 1ca919dc65d7182c18dc96ed4c69fc50dd2856bf
sha256: 5c9b984a73fb4fa0c2bbd5aec559e87b4b03eee3e2cb9ab0e3423cf3fddff4d9
sha512: e7081466d772be7e3d1c02e4dcc257f1fd28c628b6f7f3067ce1ecf4f07acea291bae77e43831e6233398ea427ad692e81decdb35f7cd4b40cc986926e0eb40b
ssdeep: 12288:yXV5Ei+TJ8NJA68XdVw3KnZnokfvpEB7NiBptTisqI0:yXuTaNJA3Vwso+WbUptTisqI0
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T1C8B4126EB2A513E7C13113F22A8F6AD4720EC135476592C8282DC07E21B7D9967B37F9
sha3_384: 1accb0fffcd559eae1adf8af2e923a046a38e4edf094d85f36f53ba6d86d9dab0f4100a28762e8f5361e19b98c662789
ep_bytes: 60be2c9b6eb0f7d721d781c7a97f339f
timestamp: 1970-01-01 00:00:00


Version Info:

0: [No Data]

Lazy.414556 also known as:

BkavW32.AIDetectMalware
tehtrisGeneric.Malware
MicroWorld-eScanGen:Variant.Lazy.414556
FireEyeGeneric.mg.bf082983269f4d02
SkyhighBehavesLike.Win32.Generic.hm
McAfeeGenericRXAA-FA!BF082983269F
MalwarebytesTrojan.MalPack.UPX
SangforSuspicious.Win32.Save.a
K7AntiVirusTrojan ( 0057984e1 )
BitDefenderGen:Variant.Lazy.414556
K7GWTrojan ( 0057984e1 )
CrowdStrikewin/malicious_confidence_100% (D)
ArcabitTrojan.Lazy.D6535C
BitDefenderThetaGen:NN.ZexaF.36792.FmY@au7DkUl
SymantecML.Attribute.HighConfidence
Elasticmalicious (high confidence)
ESET-NOD32a variant of Win32/Injector.EBQH
APEXMalicious
ClamAVWin.Packed.Zpack-10001780-0
KasperskyHEUR:Trojan.Win32.Generic
NANO-AntivirusTrojan.Win32.Razy.iptbgg
TencentTrojan.Win32.Injector.wc
SophosTroj/Agent-BGQS
VIPREGen:Variant.Lazy.414556
TrendMicroPAK_Xed-10
EmsisoftGen:Variant.Lazy.414556 (B)
SentinelOneStatic AI – Malicious PE
GoogleDetected
VaristW32/Kryptik.DND.gen!Eldorado
Kingsoftmalware.kb.b.945
XcitiumMalCrypt.Indus!@1qrzi1
MicrosoftTrojan:Win32/AgentCrypt.SM!MTB
ZoneAlarmHEUR:Trojan.Win32.Generic
GDataGen:Variant.Lazy.414556
CynetMalicious (score: 100)
AhnLab-V3Malware/Gen.RL_Reputation.R368477
VBA32BScope.Trojan.Wacatac
ALYacGen:Variant.Lazy.414556
MAXmalware (ai score=82)
DeepInstinctMALICIOUS
Cylanceunsafe
PandaTrj/Genetic.gen
TrendMicro-HouseCallPAK_Xed-10
RisingTrojan.Kryptik!1.D12D (CLASSIC)
IkarusTrojan.Win32.Injector
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/Agent.BGQS!tr
AVGWin32:Evo-gen [Trj]
AvastWin32:Evo-gen [Trj]

How to remove Lazy.414556?

Lazy.414556 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment