Ransom

Ransom.1665 malicious file

Malware Removal

The Ransom.1665 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Ransom.1665 virus can do?

  • Network activity detected but not expressed in API logs

How to determine Ransom.1665?



File Info:

crc32: DBAEECF0
md5: 1f58ba84ae401943afe71884560cd242
name: 1F58BA84AE401943AFE71884560CD242.mlw
sha1: 9b7adc65a73af076136a33e1cc9516923265a4eb
sha256: 6b4c6430422657a77ead9830abdb70cba3a47e4b5e42e905b7d859172aa7c631
sha512: 4dccbb672fde25dbc246f05582c7edba4896bfbcb895851b01ef37df6239d27bc141c1123c27d2a565c081b0c63369e554eac35ad25078c4950422ac93186a61
ssdeep: 768:5Hr58jSgu2GQyBbxrf1uTSvrf1uT0y4nAqrf1uTCTgrDre:Bry4LBbxD1uT2D1uTbwD1uTCuHe
type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows


Version Info:

Translation: 0x0000 0x04b0
LegalCopyright: Copyright xa9  2021
Assembly Version: 1.0.0.0
InternalName: join.exe
FileVersion: 1.0.0.0
CompanyName: 
LegalTrademarks: 
Comments: 
ProductName: WFWWW
ProductVersion: 1.0.0.0
FileDescription: WFWWW
OriginalFilename: join.exe

Ransom.1665 also known as:

Elasticmalicious (high confidence)
ALYacGen:Variant.Ransom.1665
SangforSuspicious.Win32.Artemis.1F58BA84AE40
CrowdStrikewin/malicious_confidence_60% (W)
BitDefenderGen:Variant.Ransom.1665
Cybereasonmalicious.4ae401
APEXMalicious
MicroWorld-eScanGen:Variant.Ransom.1665
Ad-AwareGen:Variant.Ransom.1665
FireEyeGen:Variant.Ransom.1665
EmsisoftGen:Variant.Ransom.1665 (B)
ArcabitTrojan.Ransom.D681
AegisLabTrojan.Win32.Generic.4!c
GDataGen:Variant.Ransom.1665
McAfeeArtemis!1F58BA84AE40
MAXmalware (ai score=85)
TrendMicro-HouseCallTROJ_GEN.R002H09ER21

How to remove Ransom.1665?

Ransom.1665 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment