Ransom

How to remove “Ransom.650”?

Malware Removal

The Ransom.650 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
6-day free trial available.

What Ransom.650 virus can do?

  • The binary likely contains encrypted or compressed data.
  • Network activity detected but not expressed in API logs

How to determine Ransom.650?


File Info:

crc32: B9374CB8
md5: 255414c2f62068836fbb019301b320c5
name: 255414C2F62068836FBB019301B320C5.mlw
sha1: 257e228d48baa153549c619dc36903b4944ee4d5
sha256: c2ec5a74f18e1e6e50119393d1d81b4e968f486e29234bfeffbaff7f8e4b8332
sha512: fc3fabe0d06cded85fe0dfd4f763df49aa12ebf1181a59c5b097b3f0750e853453ab448ab5afe4a96fc2c3a0315a1dbf71bc8f8fc8e699dee4b801af2e66fc04
ssdeep: 12288:OYiJc0LmHVXzQs1fRW/BLk0yoQCsq/L7NovP/6kpvxo3I/pSr4B:5yc0LmHVXzQs1fRW/BLk0YvwL7TYQI/
type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows

Version Info:

0: [No Data]

Ransom.650 also known as:

K7AntiVirusTrojan ( 00520d881 )
LionicTrojan.MSIL.Generic.m!c
Elasticmalicious (high confidence)
DrWebTrojan.Nanocore.23
CynetMalicious (score: 100)
ALYacGen:Variant.Ransom.650
CylanceUnsafe
ZillyaBackdoor.NanoBot.Win32.4
SangforTrojan.Win32.Save.a
CrowdStrikewin/malicious_confidence_80% (D)
K7GWTrojan ( 00520d881 )
Cybereasonmalicious.2f6206
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of MSIL/Injector.TIM
APEXMalicious
AvastWin32:Malware-gen
KasperskyHEUR:Backdoor.MSIL.Generic
BitDefenderGen:Variant.Ransom.650
NANO-AntivirusTrojan.Win32.Nanocore.ewvpks
MicroWorld-eScanGen:Variant.Ransom.650
TencentMalware.Win32.Gencirc.114924e5
Ad-AwareGen:Variant.Ransom.650
ComodoMalware@#ooaepe8np49m
BitDefenderThetaGen:NN.ZemsilF.34058.GuX@aCBO5Ali
VIPRETrojan.Win32.Generic!BT
McAfee-GW-EditionArtemis
FireEyeGeneric.mg.255414c2f6206883
EmsisoftGen:Variant.Ransom.650 (B)
SentinelOneStatic AI – Suspicious PE
JiangminBackdoor.MSIL.zme
AviraHEUR/AGEN.1115787
Antiy-AVLTrojan/Generic.ASMalwS.234F5AF
MicrosoftTrojan:Win32/Wacatac.B!ml
ArcabitTrojan.Ransom.650
GDataGen:Variant.Ransom.650
McAfeeArtemis!255414C2F620
MAXmalware (ai score=98)
VBA32Backdoor.MSIL.NanoBot
PandaTrj/CI.A
YandexBackdoor.NanoBot!ggrrD0EqutI
IkarusTrojan.MSIL.Krypt
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/Generic.BJAH!tr.bdr
AVGWin32:Malware-gen
Paloaltogeneric.ml
Qihoo-360Win32/Backdoor.Generic.HwMAEpsA

How to remove Ransom.650?

Ransom.650 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment