Ransom

What is “Ransom.Mespinoza”?

Malware Removal

The Ransom.Mespinoza is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Ransom.Mespinoza virus can do?

  • Steals private information from local Internet browsers
  • Network activity detected but not expressed in API logs

How to determine Ransom.Mespinoza?



File Info:

crc32: 70D758B1
md5: 429126aa566b3fd191227b4f2d1890fc
name: 429126AA566B3FD191227B4F2D1890FC.mlw
sha1: 932626b6f4c6eb5e21115c8ab5689f23b4d68155
sha256: 327934c4c11ba37f42a91e1b7b956d5a4511f918e63047a8c4aa081fd39de6d9
sha512: 78abbc1be1757294627749a67b2b3ef73674e10ce14fd8faa04b1f2bc54728ea1ba96ec8dcd8e790d8b5b32126030dcf84aef1671aade3fa61ceb1badf7884cc
ssdeep: 12288:bfClmGO4Ih+OeO+OeNhBBhhBB8TRWClfSlKmkzsD+tTsGqq:LClmppTRWChSlDkgytbt
type: PE32 executable (console) Intel 80386, for MS Windows


Version Info:

0: [No Data]

Ransom.Mespinoza also known as:

BkavW32.AIDetectVM.malware1
DrWebTrojan.Encoder.32290
MicroWorld-eScanGeneric.Ransom.Mespinoza.AF3A69C9
Qihoo-360Win32/Trojan.109
McAfeeRDN/Ransom
MalwarebytesRansom.Mespinoza
ZillyaTrojan.Filecoder.Win32.16463
AegisLabTrojan.Win32.Mespinoza.4!c
SangforMalware
K7AntiVirusTrojan ( 0055d5e81 )
BitDefenderGeneric.Ransom.Mespinoza.AF3A69C9
K7GWTrojan ( 0055d5e81 )
Cybereasonmalicious.a566b3
ArcabitGeneric.Ransom.Mespinoza.AF3A69C9
BitDefenderThetaGen:NN.ZexaF.34658.FCW@aW3M!Iei
SymantecRansom.Gen
TrendMicro-HouseCallRansom.Win32.MESPINOZA.SMDA
Paloaltogeneric.ml
KasperskyHEUR:Trojan.Win32.Zudochka.gen
AlibabaRansom:Win32/generic.ali2000010
NANO-AntivirusTrojan.Win32.Zudochka.hvuhag
TencentMalware.Win32.Gencirc.11afd219
Ad-AwareGeneric.Ransom.Mespinoza.AF3A69C9
EmsisoftGeneric.Ransom.Mespinoza.AF3A69C9 (B)
ComodoMalware@#117ji6jucy9rz
F-SecureTrojan.TR/FileCoder.gwmik
TrendMicroRansom.Win32.MESPINOZA.SMDA
McAfee-GW-EditionRDN/Ransom
FireEyeGeneric.mg.429126aa566b3fd1
SophosMal/Generic-S
IkarusTrojan-Ransom.FileCrypter
JiangminTrojan.Zudochka.iv
AviraTR/FileCoder.gwmik
Antiy-AVLTrojan/Win32.Zudochka
KingsoftWin32.Troj.Undef.(kcloud)
MicrosoftRansom:Win32/Filecoder.PD!MTB
ZoneAlarmHEUR:Trojan.Win32.Zudochka.gen
GDataGeneric.Ransom.Mespinoza.AF3A69C9
CynetMalicious (score: 100)
AhnLab-V3Malware/Win32.Generic.C3650054
VBA32Trojan.Zudochka
ALYacTrojan.Ransom.Mespinoza
MAXmalware (ai score=88)
CylanceUnsafe
PandaTrj/GdSda.A
APEXMalicious
ESET-NOD32a variant of Win32/Filecoder.NYO
RisingRansom.Agent!1.C222 (CLASSIC)
YandexTrojan.GenAsa!qoUkCes1Sac
eGambitUnsafe.AI_Score_74%
FortinetW32/Filecoder.NYO!tr.ransom
AVGWin32:RansomX-gen [Ransom]
AvastWin32:RansomX-gen [Ransom]
CrowdStrikewin/malicious_confidence_60% (W)
MaxSecureTrojan.Malware.121218.susgen

How to remove Ransom.Mespinoza?

Ransom.Mespinoza removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment