Malware

Lazy.507249 malicious file

Malware Removal

The Lazy.507249 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Lazy.507249 virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Sample contains Overlay data
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX
  • Authenticode signature is invalid
  • CAPE detected the embedded win api malware family
  • Yara detections observed in process dumps, payloads or dropped files

How to determine Lazy.507249?



File Info:

name: A79A467F81CA9B281442.mlw
path: /opt/CAPEv2/storage/binaries/3518d7649f38ee32cf50b726b725928e840bbaa4c5ed59244015889d2d42c2dd
crc32: ACEDB259
md5: a79a467f81ca9b28144272acfcde9728
sha1: 099e229506f1e4bc2a46bab4df7072313a98d31d
sha256: 3518d7649f38ee32cf50b726b725928e840bbaa4c5ed59244015889d2d42c2dd
sha512: 617a378f244df33c70f4a46b05372928933669daf346cbfa126a33ddb3655973631ad8dd809eb2176b0bb39237af023e601d0c3f15556fb310edcba6cf0c7f3f
ssdeep: 49152:1xYiHwIhRF5IB42vc/cwBSvYasIfbuMiRPxRzNxQe7zrD2nIYRhHa5W4MzqF/9Vk:/wIhRFm9c/ZBgYIfqRzNxQe7zrDg/76/
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T162D567112E7C8454F955983D522EA1B3E53BBBDEBB0F20136871A2BB0B37785919D332
sha3_384: dee1bbe9ca3bd29ae0dd1dd00e150f204847b5711f14a480ab00e8c1819463faeb6751fb2326d2e2b9f7b8a808256a2c
ep_bytes: 60be009046008dbe0080f9ff5783cdff
timestamp: 2005-02-23 07:48:47


Version Info:

CompanyName: Kaspersky
FileDescription: Kaspersky Internet Security [21.3.10.391.0.21.0]
FileVersion: 21.3.10.391
LegalCopyright: © 2021 AO Kaspersky Lab
LegalTrademarks: Registered trademarks and service marks are the property of their respective owners
ProductName: Kaspersky Internet Security
ProductVersion: 21.3.10.391
InternalName: Setup
OriginalFilename: Setup.exe
Translation: 0x0409 0x04b0

Lazy.507249 also known as:

BkavW32.Common.70C5D4A2
MicroWorld-eScanGen:Variant.Lazy.507249
FireEyeGeneric.mg.a79a467f81ca9b28
SkyhighBehavesLike.Win32.BadFile.vc
BitDefenderGen:Variant.Lazy.507249
EmsisoftGen:Variant.Lazy.507249 (B)
Trapminemalicious.moderate.ml.score
Antiy-AVLTrojan/Win32.Wacatac
ArcabitTrojan.Lazy.D7BD71
GDataGen:Variant.Lazy.507249
AhnLab-V3Malware/Win32.Generic.C4169367
McAfeeArtemis!A79A467F81CA
MAXmalware (ai score=80)
RisingTrojan.Generic@AI.87 (RDML:tTydrzTETmA8YnUoce2iQg)
BitDefenderThetaGen:NN.ZexaF.36802.OoMfaiEzI8aO
CrowdStrikewin/malicious_confidence_60% (D)

How to remove Lazy.507249?

Lazy.507249 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment