Ransom:Win32/Genasom.DG removal guide

The Ransom:Win32/Genasom.DG is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Ransom:Win32/Genasom.DG virus can do?

Network activity detected but not expressed in API logs
Anomalous binary characteristics

How to determine Ransom:Win32/Genasom.DG?


File Info:
crc32: 109518F2
md5: e91a20503a809384f1c77a4dae5b0a69
name: E91A20503A809384F1C77A4DAE5B0A69.mlw
sha1: 324de3801bfe33eaa4ce64a48608b4c9362c38fc
sha256: 6555a4384df72de964e8d50fe6f0d824e24ab10d0ace7941078dd63d554304c5
sha512: 5f9b9565f63d2351044510cfaadebe61a480f981eb732f8828c30a7ab2744f342f77779a52c90e691c1a3a0be8378f601d25981381ca96bc6b3511ae26146a36
ssdeep: 6144:8x8VFfrgwlyTp0NH9oZ8VEBkWCk8rIK5xi6TRMeSNgrYdpekCLJcYX:TVhLaex9e8VECiYh4P9CSG
type: PE32 executable (GUI) Intel 80386 (stripped to external PDB), for MS Windows

Version Info:
LegalCopyright: Pyre xa9 Emily Alien 2003-2011
InternalName: Terse Perez Glint Mitts Third Myron
FileVersion: 2.7
CompanyName: Pinnacle Systems
Comments: Kibitz Tuck Holly
ProductName: Gluing Live Brook Grind Heckle Rhyme
ProductVersion: 2.7
FileDescription: August Drops Saran Leery Clung
OriginalFilename: Siege.exe
Translation: 0x0409 0x04b0

Ransom:Win32/Genasom.DG also known as:

Bkav	W32.AIDetect.malware2
K7AntiVirus	Trojan ( 0055e4091 )
Elastic	malicious (high confidence)
Cynet	Malicious (score: 100)
Cylance	Unsafe
Zillya	Trojan.LockScreen.Win32.7626
Sangfor	Trojan.Win32.Save.a
CrowdStrike	win/malicious_confidence_100% (W)
Alibaba	Ransom:Win32/Genasom.d9c788d6
K7GW	Trojan ( 0055e4091 )
Cybereason	malicious.01bfe3
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	Win32/LockScreen.AGU
APEX	Malicious
Avast	Win32:Evo-gen [Susp]
Kaspersky	UDS:DangerousObject.Multi.Generic
NANO-Antivirus	Trojan.Win32.Crypted.efbjxb
Tencent	Win32.Trojan.Lockscreen.Ajbm
Sophos	Mal/Generic-S
Comodo	Malware@#1giop9mzsomgu
BitDefenderTheta	Gen:NN.ZexaF.34690.xS0@auz2Broi
VIPRE	Trojan.Win32.EncPk.acl (v)
McAfee-GW-Edition	BehavesLike.Win32.PWSZbot.fm
FireEye	Generic.mg.e91a20503a809384
SentinelOne	Static AI – Suspicious PE
Jiangmin	Trojan/Birele.cd
Avira	TR/Crypt.XPACK.Gen
eGambit	Generic.Malware
Antiy-AVL	Trojan/Generic.ASMalwS.2DF990
Microsoft	Ransom:Win32/Genasom.DG
AegisLab	Trojan.Win32.Generic.4!c
McAfee	Artemis!E91A20503A80
MAX	malware (ai score=100)
VBA32	Hoax.Birele
Panda	Generic Malware
Rising	Ransom.Genasom!8.293 (CLOUD)
Yandex	Trojan.LockScreen!jWI2M1UAHJk
Ikarus	Trojan.Win32.Ransom
Fortinet	W32/Yakes.LS!tr
AVG	Win32:Evo-gen [Susp]
Paloalto	generic.ml

How to remove Ransom:Win32/Genasom.DG?

Ransom:Win32/Genasom.DG removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X