Ransom

About “Ransom.1484 (B)” infection

Malware Removal

The Ransom.1484 (B) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Ransom.1484 (B) virus can do?

  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

Related domains:

z.whorecord.xyz
a.tomx.xyz

How to determine Ransom.1484 (B)?



File Info:

crc32: FF6E59E9
md5: 322b407b789f7df7d7a01237a8a6c9ba
name: 322B407B789F7DF7D7A01237A8A6C9BA.mlw
sha1: 03a19804248485481170e8d1b2b87a7c8bfb2c31
sha256: 3ea1efa47fbaedb81406e1d329af41eb732a4adf4c0b26ec8d059380792c27a6
sha512: 4a846f907a96500537f6ab50f357f6845587e6643b17b13b267a45ed40c00cd7874a11e6eb527d302fe713c0d3a3de0226fec3654d0d2773795bef6ef628ec3a
ssdeep: 768:5Z/KwcvsijOqvi2rtwuP+y31uesvikB3H:5Z/KwcvsiUKtwuxdWiktH
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright: xa9 Microsoft Corporation. All rights reserved.
InternalName: WAB.EXE
FileVersion: 6.00.2900.6040 (xpsp_sp3_gdr.101011-1837)
CompanyName: Microsoft Corporation
ProductName: Microsoftxae Windowsxae Operating System
ProductVersion: 6.00.2900.6040
FileDescription: Address Book
OriginalFilename: WAB.EXE
Translation: 0x0409 0x04b0

Ransom.1484 (B) also known as:

BkavW32.AIDetect.malware1
LionicTrojan.Win32.Generic.4!c
Elasticmalicious (high confidence)
CynetMalicious (score: 100)
ALYacGen:Variant.Ransom.1484
CylanceUnsafe
CrowdStrikewin/malicious_confidence_90% (D)
AlibabaTrojan:Win32/Vitro.9eeed691
Cybereasonmalicious.b789f7
APEXMalicious
AvastWin32:WrongInf-A [Susp]
ClamAVWin.Virus.Virut-5901233-0
BitDefenderGen:Variant.Ransom.1484
MicroWorld-eScanGen:Variant.Ransom.1484
Ad-AwareGen:Variant.Ransom.1484
SophosMal/Generic-S
ComodoMalware@#13oow4mvz7413
BitDefenderThetaGen:NN.ZexaF.34142.hm0@aGoklpfi
McAfee-GW-EditionBehavesLike.Win32.Virut.cz
FireEyeGeneric.mg.322b407b789f7df7
EmsisoftGen:Variant.Ransom.1484 (B)
SentinelOneStatic AI – Malicious PE
AviraTR/Ransom.nkjyd
eGambitUnsafe.AI_Score_99%
MicrosoftTrojan:Win32/Tiggre!rfn
ArcabitTrojan.Ransom.D5CC
GDataGen:Variant.Ransom.1484
McAfeeArtemis!322B407B789F
MAXmalware (ai score=86)
PandaTrj/CI.A
IkarusTrojan.Agent.Vitro
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/PossibleThreat
AVGWin32:WrongInf-A [Susp]
Paloaltogeneric.ml

How to remove Ransom.1484 (B)?

Ransom.1484 (B) removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment