Ransom

Ransom:MSIL/Crypute.F information

Malware Removal

The Ransom:MSIL/Crypute.F is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Ransom:MSIL/Crypute.F virus can do?

  • Anomalous binary characteristics

How to determine Ransom:MSIL/Crypute.F?



File Info:

crc32: A6624B2B
md5: a79e3ab42d0e019649c9fd4146e9b27c
name: A79E3AB42D0E019649C9FD4146E9B27C.mlw
sha1: 5e521ca8f6f8d67757129043cdfd2f8629d65cfc
sha256: a033addb1cc33414199f567efad8e72b4dc32b93144d648603bff4462ad0700d
sha512: 0c97cec012efd64d383f9f54c644fef4fc0463ebbef6ff3e89bcea086148a36884fea308d5f3728754682d054449ae3ae2b2cdebaf3c6400827199ce80d520da
ssdeep: 768:DVDGjkCwZae/iGggFei4RRVdXPdgtsMsk7jMmcPfCr1E8mVuNHkgPCAAAAAAAAA:VUGZae/idoe5Xfdgewg/iJkV
type: PE32+ executable (GUI) x86-64 Mono/.Net assembly, for MS Windows


Version Info:

Translation: 0x0000 0x04b0
LegalCopyright: Copyright xa9  2017
Assembly Version: 1.0.0.0
InternalName: WinBan Ransomware.exe
FileVersion: 1.0.0.0
ProductName: WinBan Ransomware
ProductVersion: 1.0.0.0
FileDescription: WinBan Ransomware
OriginalFilename: WinBan Ransomware.exe

Ransom:MSIL/Crypute.F also known as:

Elasticmalicious (high confidence)
MicroWorld-eScanTrojan.GenericKD.45814860
FireEyeTrojan.GenericKD.45814860
McAfeeArtemis!A79E3AB42D0E
CylanceUnsafe
VIPRETrojan.Win32.Generic!BT
AegisLabTrojan.Win32.Generic.4!c
K7AntiVirusTrojan ( 0051011e1 )
BitDefenderTrojan.GenericKD.45814860
K7GWTrojan ( 0051011e1 )
CyrenW64/Trojan.UGVK-7390
SymantecTrojan.Gen.MBT
APEXMalicious
AvastWin64:Trojan-gen
AlibabaRansom:MSIL/Crypute.35f360dc
ViRobotTrojan.Win32.Z.Fakesupport.290816
Ad-AwareTrojan.GenericKD.45814860
SophosMal/Generic-S
F-SecureTrojan.TR/FakeSupport.gnjzm
TrendMicroRansom_Crypute.R002C0DC121
McAfee-GW-EditionArtemis!Trojan
EmsisoftTrojan.GenericKD.45814860 (B)
IkarusTrojan.MSIL.Fakesupport
AviraTR/FakeSupport.gnjzm
MAXmalware (ai score=89)
MicrosoftRansom:MSIL/Crypute.F
ArcabitTrojan.Generic.D2BB144C
GDataWin64.Trojan.Agent.JDMUUP
CynetMalicious (score: 85)
AhnLab-V3Malware/Gen.RL_Reputation.C4350086
ALYacTrojan.GenericKD.45814860
MalwarebytesMalware.AI.2531466001
ESET-NOD32a variant of MSIL/FakeSupport.BM
TrendMicro-HouseCallRansom_Crypute.R002C0DC121
FortinetMSIL/FakeSupport.BM!tr
AVGWin64:Trojan-gen
Qihoo-360Win64/Trojan.Generic.HgEASP8A

How to remove Ransom:MSIL/Crypute.F?

Ransom:MSIL/Crypute.F removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment