Ransom

How to remove “Ransom.864”?

Malware Removal

The Ransom.864 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Ransom.864 virus can do?

  • Executable code extraction
  • Creates RWX memory
  • Installs itself for autorun at Windows startup
  • Exhibits possible ransomware file modification behavior
  • Creates a hidden or system file

Related domains:

z.whorecord.xyz
a.tomx.xyz

How to determine Ransom.864?



File Info:

crc32: 2E519E1E
md5: f7d228f9728ba6a4555c85d5ff1e08f5
name: F7D228F9728BA6A4555C85D5FF1E08F5.mlw
sha1: a557c177ea0c69c05f7364232b7dd14fe9ae2e1b
sha256: 571c573b64508ebc84bc2c5e5f1950e10f56948ff95b28d2292ff549ecc130a6
sha512: 2887aad0c71f6cc9a8059a8d00aead4b99e64466314c1b939168a5ef3867881d744b1dc87298a3b560298c2e20bb7671ff0afaaf275ec3380d65b4752c592a56
ssdeep: 24576:ZTcQtpvIfqsGM+npkaBPgZZXNK+UR1ggSPit8wQoK5:VcURnQT5y5zyl
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright: Copyright xa9.
InternalName: Outcomes
FileVersion: 5.6.66.1
CompanyName: UNIPHIZ Lab
LegalTrademarks: Copyright xa9.
ProductName: Outcomes
Languages: English
ProductVersion: 5.6.66.1
FileDescription: Rare Adherence Layouton
OriginalFilename: Outcomes
Translation: 0x0409 0x04b0

Ransom.864 also known as:

BkavW32.AIDetect.malware1
K7AntiVirusTrojan ( 004c2aec1 )
Elasticmalicious (high confidence)
DrWebTrojan.Encoder.567
CynetMalicious (score: 100)
ALYacTrojan.Ransom.Cryakl
CylanceUnsafe
ZillyaTrojan.GenericKD.Win32.193003
CrowdStrikewin/malicious_confidence_100% (W)
AlibabaTrojan:Win32/Yakes.36477285
K7GWTrojan ( 004c2aec1 )
Cybereasonmalicious.9728ba
SymantecTrojan Horse
ESET-NOD32Win32/Filecoder.EQ
APEXMalicious
AvastWin32:Trojan-gen
ClamAVWin.Packer.MalwareCrypter-6620810-1
KasperskyTrojan.Win32.Yakes.xckn
BitDefenderGen:Variant.Ransom.864
NANO-AntivirusTrojan.Win32.Yakes.fhmvdy
MicroWorld-eScanGen:Variant.Ransom.864
TencentMalware.Win32.Gencirc.114d4316
Ad-AwareGen:Variant.Ransom.864
SophosMal/Generic-S
ComodoMalware@#2t0et5x19ogk5
BitDefenderThetaGen:NN.ZexaCO.34770.Rr0@a80VHNgi
VIPRETrojan.Win32.Generic!BT
TrendMicroRansom_HOLA.THIODAH
McAfee-GW-EditionBehavesLike.Win32.TrojanAitInject.th
FireEyeGeneric.mg.f7d228f9728ba6a4
EmsisoftGen:Variant.Ransom.864 (B)
JiangminTrojan.Yakes.acri
WebrootW32.Trojan.Gen
AviraHEUR/AGEN.1100819
MicrosoftTrojan:Win32/Glupteba!ml
AegisLabTrojan.Win32.Yakes.4!c
ZoneAlarmTrojan.Win32.Yakes.xckn
GDataGen:Variant.Ransom.864
McAfeeArtemis!F7D228F9728B
VBA32Trojan.Yakes
MalwarebytesRansom.FileCryptor
PandaTrj/GdSda.A
TrendMicro-HouseCallRansom_HOLA.THIODAH
RisingTrojan.Generic@ML.83 (RDML:S+A1fs0xBpGp296lEcKVfw)
YandexTrojan.Yakes!5lR+hGesWwc
IkarusTrojan-Ransom.GandCrab
FortinetW32/Generic.AP.1EFE60!tr
AVGWin32:Trojan-gen
Qihoo-360Win32/Botnet.Yakes.HgIASOgA

How to remove Ransom.864?

Ransom.864 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment