Ransom.PornoAsset (file analysis)

The Ransom.PornoAsset is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Ransom.PornoAsset virus can do?

Presents an Authenticode digital signature
Anomalous binary characteristics

How to determine Ransom.PornoAsset?


File Info:
crc32: 8A003511
md5: f308c8dc2ff4051af6a54960dd9c675e
name: F308C8DC2FF4051AF6A54960DD9C675E.mlw
sha1: f1a3b064c279adb290e370b031c01b2c613fe09d
sha256: 0b8247e05302799604ec2794f0283adca622531e60a64b6a978d6c2c004decbd
sha512: 7bc60ecf1a4a0d5548772a73e9b9e0e038feb2eea493f32562984deec7d7701466a77da9b39018b50992255af09dcee6ab20b3ff0ef74cecbf62b4d1611c8644
ssdeep: 24576:eLvloGoFLBXCPbgLxnf0LNzjCMzGRlmbd4vyXujB1qr4Qfk5BkAE+LZX:eCZFkz7zGObm6XuW4Q8cQx
type: PE32+ executable (console) x86-64 Mono/.Net assembly, for MS Windows

Version Info:
Translation: 0x0000 0x04b0
LegalCopyright: Copyright xa9  2018-2020
Assembly Version: 1.6.0.0
InternalName: SMT.exe
FileVersion: 1.06
CompanyName: SMT
LegalTrademarks: 
Comments: Free and open source SS Tool
ProductName: SMT
ProductVersion: 1.06
FileDescription: SMT
OriginalFilename: SMT.exe

Ransom.PornoAsset also known as:

MicroWorld-eScan	Trojan.GenericKD.36312233
FireEye	Trojan.GenericKD.36312233
CAT-QuickHeal	Trojan.Windowsd
McAfee	Artemis!F308C8DC2FF4
Cylance	Unsafe
VIPRE	Trojan.Win32.Generic!BT
Sangfor	Trojan.Win32.Save.a
K7AntiVirus	Trojan ( 0055845c1 )
BitDefender	Trojan.GenericKD.36312233
K7GW	Trojan ( 0055845c1 )
Cyren	W64/Trojan.HCYU-5503
Symantec	Trojan.Gen.2
Paloalto	generic.ml
Kaspersky	HEUR:Trojan-Ransom.MSIL.PornoAsset.gen
Alibaba	RiskWare:Win64/WindowsD.4886b024
Ad-Aware	Trojan.GenericKD.36312233
Sophos	Mal/Generic-S
Zillya	Tool.WindowsD.Win64.16
TrendMicro	Ransom_PornoAsset.R002C0WB721
McAfee-GW-Edition	Artemis!Trojan
Emsisoft	Trojan.GenericKD.36312233 (B)
MaxSecure	Trojan.Malware.73871577.susgen
MAX	malware (ai score=88)
Microsoft	Program:Win32/Ymacco.AA0B
Arcabit	Trojan.Generic.D22A14A9
ZoneAlarm	HEUR:Trojan-Ransom.MSIL.PornoAsset.gen
GData	Trojan.GenericKD.36312233
AhnLab-V3	PUP/Win64.RL_Generic.C4344461
ALYac	Trojan.GenericKD.36312233
Malwarebytes	Ransom.PornoAsset
Panda	Trj/CI.A
ESET-NOD32	a variant of Win64/Riskware.WindowsD.A
TrendMicro-HouseCall	Ransom_PornoAsset.R002C0WB721
Fortinet	Riskware/PornoAsset
AVG	Win64:Malware-gen
Avast	Win64:Malware-gen
Qihoo-360	Win64/Ransom.PornoAsset.HgEASOcA

How to remove Ransom.PornoAsset?

Ransom.PornoAsset removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X