Ransom

Ransom.Crypt0L0cker removal guide

Malware Removal

The Ransom.Crypt0L0cker is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Ransom.Crypt0L0cker virus can do?

  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

How to determine Ransom.Crypt0L0cker?



File Info:

crc32: 3C61058D
md5: c62e5cafa4cf91415e80fd46bf25cbdf
name: tmpro_n8s2r
sha1: 24779324e2d5d5cace9ba3b0dea944fbfc8778f1
sha256: 3b4d4c04603153081e581d3b04ec0923319b1f7c2370b6a40db0798223be744c
sha512: 46373e0ed8d97eda511c7c280d96fe3abb584746bc34451932eedef0958fd964a623f146cead679045965b262f84cb85e4189b9623b8797bed1da88fdaaab803
ssdeep: 12288:YQjLuRE4xKR72qKoe/ZWsYUxUKQzZZQZsqtOqu:nLueaKR72qKoe/EhdKYavu
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright: Copyright (C) 2017
InternalName: HD Tune Pro
FileVersion: 8, 1, 2, 3
CompanyName: EFT Software
PrivateBuild: 
LegalTrademarks: 
Comments: 
ProductName: HD Tune Pro
SpecialBuild: 
ProductVersion: 9, 7, 1, 0
FileDescription: HH Tune Pro
OriginalFilename: HDTunePro.EXE
Translation: 0x0409 0x04b0

Ransom.Crypt0L0cker also known as:

BkavW32.RansomwareALTAS.Trojan
MicroWorld-eScanTrojan.GenericKD.33686538
FireEyeGeneric.mg.c62e5cafa4cf9141
CAT-QuickHealWorm.Gamarue.WR5
McAfeeTrojan-FFRU!C62E5CAFA4CF
CylanceUnsafe
ZillyaTrojan.Agent.Win32.508499
SUPERAntiSpywareTrojan.Agent/Gen-Rovnix
SangforMalware
K7AntiVirusTrojan ( 004b5c0b1 )
AlibabaTrojanDownloader:Win32/Cutwail.6fa388ec
K7GWTrojan ( 004b5c0b1 )
Cybereasonmalicious.fa4cf9
ArcabitTrojan.Generic.D202040A
Invinceaheuristic
CyrenW32/Backdoor.KVKX-2352
SymantecML.Attribute.HighConfidence
ESET-NOD32Win32/Filecoder.TorrentLocker.A
APEXMalicious
AvastWin32:CryptoLocker-B [Trj]
ClamAVWin.Malware.Bhta-7598462-0
GDataTrojan.GenericKD.33686538
KasperskyHEUR:Trojan.Win32.Generic
BitDefenderTrojan.GenericKD.33686538
NANO-AntivirusTrojan.Win32.Agent.dnqgjc
Paloaltogeneric.ml
TencentMalware.Win32.Gencirc.10b9d337
Ad-AwareTrojan.GenericKD.33686538
SophosTroj/Agent-ALOF
ComodoMalware@#1ds4xx3ok23kx
F-SecureTrojan.TR/AD.Teerac.onxjs
DrWebTrojan.Encoder.847
VIPRETrojan.Win32.Filecoder.dia (v)
TrendMicroTROJ_GEN.R002C0DC520
McAfee-GW-EditionTrojan-FFRU!C62E5CAFA4CF
Trapminemalicious.high.ml.score
EmsisoftTrojan.GenericKD.33686538 (B)
IkarusTrojan-Ransom.Torrentlocker
F-ProtW32/Backdoor2.HWZN
JiangminTrojan/Rack.e
WebrootW32.Infostealer.Zeus
AviraTR/AD.Teerac.onxjs
MAXmalware (ai score=88)
Antiy-AVLTrojan/Win32.Agent
MicrosoftTrojanDownloader:Win32/Cutwail
Endgamemalicious (high confidence)
AegisLabTrojan.Win32.Zbot.m6l9
ZoneAlarmHEUR:Trojan.Win32.Generic
CynetMalicious (score: 100)
AhnLab-V3Trojan/Win32.Xema.R134831
Acronissuspicious
VBA32Trojan.Agent
ALYacTrojan.GenericKD.33686538
MalwarebytesRansom.Crypt0L0cker
TrendMicro-HouseCallRansom.Win32.TORRENTLOCKER.SMTH
RisingTrojan.Win32.Filecoder.v (CLOUD)
YandexTrojan.Agent!lgBTD6EvGR4
SentinelOneDFI – Malicious PE
eGambitUnsafe.AI_Score_99%
FortinetW32/Crypren.QIR!tr
BitDefenderThetaGen:NN.ZexaF.34128.Iq1@aiYvsDki
AVGWin32:CryptoLocker-B [Trj]
PandaTrj/Genetic.gen
CrowdStrikewin/malicious_confidence_100% (W)
Qihoo-360Generic/HEUR/QVM10.2.B419.Malware.Gen

How to remove Ransom.Crypt0L0cker?

Ransom.Crypt0L0cker removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment