Ransom

Ransom.Enigma.1 (file analysis)

Malware Removal

The Ransom.Enigma.1 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Ransom.Enigma.1 virus can do?

  • Network activity detected but not expressed in API logs

How to determine Ransom.Enigma.1?



File Info:

crc32: 73BAB52F
md5: af85634256a1dea8fd5b815c72dbb2db
name: AF85634256A1DEA8FD5B815C72DBB2DB.mlw
sha1: 8fdacd471e9d6ba580202230140a40ec0bc94dd6
sha256: f746dfa68aaa29211645ec765b7cf7d3485d4d2b4d3ee3617e4e46d38a846a4a
sha512: 9487107bdc3171fc191c115ca4656a9b5269e8560daba36c8177b1f68dfa30219e4d166c2a9096a84995cd2046a9224beaae731b424bb5d1ad154474182367ef
ssdeep: 3072:dDoih5UXXi3kQltFUV8qYaAOHRITewxaA68MTXAMzIVg:dJ5UHK/ltFCCOHRITew968MTQYCg
type: PE32 executable (console) Intel 80386, for MS Windows


Version Info:

0: [No Data]

Ransom.Enigma.1 also known as:

Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Ransom.Enigma.1
FireEyeGeneric.mg.af85634256a1dea8
CAT-QuickHealTrojan.IGENERIC
McAfeeArtemis!AF85634256A1
MalwarebytesGeneric.Malware/Suspicious
VIPRETrojan.Win32.Generic!BT
AegisLabTrojan.Win32.Enigma.4!c
SangforTrojan.Win32.Save.a
K7AntiVirusTrojan ( 004f5da81 )
BitDefenderGen:Variant.Ransom.Enigma.1
K7GWTrojan ( 004f5da81 )
Cybereasonmalicious.256a1d
CyrenW32/S-d9895c18!Eldorado
SymantecML.Attribute.HighConfidence
APEXMalicious
AvastWin32:Malware-gen
ClamAVWin.Malware.Buho-7564755-0
AlibabaRansom:Win32/Enigma.19032a8b
NANO-AntivirusTrojan.Win32.Filecoder.evltwg
RisingRansom.FileCryptor!8.1A7 (C64:YzY0OvZeJEcae95Q)
Ad-AwareGen:Variant.Ransom.Enigma.1
EmsisoftGen:Variant.Ransom.Enigma.1 (B)
ComodoMalware@#2mjtrbydah4vz
McAfee-GW-EditionArtemis!Trojan
SophosMal/Generic-S
SentinelOneStatic AI – Suspicious PE
AviraHEUR/AGEN.1126848
MicrosoftTrojan:Win32/Ymacco.AAF7
ArcabitTrojan.Ransom.Enigma.1
GDataGen:Variant.Ransom.Enigma.1
CynetMalicious (score: 85)
AhnLab-V3Malware/Win32.Generic.C4215172
BitDefenderThetaGen:NN.ZexaF.34590.ouW@auxOYeki
ALYacGen:Variant.Ransom.Enigma.1
MAXmalware (ai score=99)
PandaTrj/GdSda.A
ESET-NOD32a variant of Win32/Filecoder.Enigma.F
TrendMicro-HouseCallTROJ_GEN.R002H0CB921
TencentWin32.Trojan.Filecoder.Lqev
YandexTrojan.GenAsa!/JAbC6XIP0c
IkarusTrojan-Ransom.Enigma
eGambitUnsafe.AI_Score_97%
FortinetW32/Filecoder_Enigma.F!tr
AVGWin32:Malware-gen
Paloaltogeneric.ml
CrowdStrikewin/malicious_confidence_90% (W)
Qihoo-360Win32/Trojan.Ransom.6a4

How to remove Ransom.Enigma.1?

Ransom.Enigma.1 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment