Ransom

Ransom:Win32/Maze removal

Malware Removal

The Ransom:Win32/Maze is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Ransom:Win32/Maze virus can do?

  • Executable code extraction
  • Creates RWX memory
  • A process attempted to delay the analysis task.
  • The binary likely contains encrypted or compressed data.
  • Uses Windows utilities for basic functionality
  • Attempts to delete volume shadow copies
  • Exhibits possible ransomware file modification behavior
  • Writes a potential ransom message to disk

Related domains:

z.whorecord.xyz
a.tomx.xyz

How to determine Ransom:Win32/Maze?



File Info:

crc32: 3E6FD65F
md5: f83fb9ce6a83da58b20685c1d7e1e546
name: F83FB9CE6A83DA58B20685C1D7E1E546.mlw
sha1: 01c459b549c1c2a68208d38d4ba5e36d29212a4f
sha256: e8a091a84dd2ea7ee429135ff48e9f48f7787637ccb79f6c3eb42f34588bc684
sha512: 934ec9073a28b90e8df785bef49f224789da59f83729208b92dba0503e2894b3f48ed04b20de1ba49374b1cd26f0c87e8e5ab79e817258135e3be2c171f3f396
ssdeep: 12288:v6l/7FpnaeoQbRLBYdunMCayql4YcQD+AgJbAWgjbgpQ:CDna43YAKl4Yci+AggEpQ
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

0: [No Data]

Ransom:Win32/Maze also known as:

BkavW32.AIDetectVM.malware1
Elasticmalicious (high confidence)
ClamAVWin.Ransomware.Maze-7473753-0
CAT-QuickHealTrojan.GenRI.S12518988
McAfeeRansomware-GOO!F83FB9CE6A83
CylanceUnsafe
VIPRETrojan.Win32.Generic!BT
AegisLabTrojan.Win32.Gen.j!c
SangforMalware
K7AntiVirusTrojan ( 00564f7e1 )
BitDefenderDeepScan:Generic.Ransom.GarrantDecrypt.B.0A449CF2
K7GWTrojan ( 00564f7e1 )
Cybereasonmalicious.e6a83d
ArcabitDeepScan:Generic.Ransom.GarrantDecrypt.B.0A449CF2
InvinceaMal/Generic-R + Troj/Ransom-FLM
CyrenW32/Ransom.CRIB-3160
SymantecTrojan.Gen.2
APEXMalicious
Paloaltogeneric.ml
CynetMalicious (score: 100)
KasperskyTrojan-Ransom.Win32.Gen.qqa
AlibabaRansom:Win32/Kryptik.087ade8f
NANO-AntivirusTrojan.Win32.Kryptik.fqtcyq
ViRobotTrojan.Win32.S.MazeRansom.484352
MicroWorld-eScanDeepScan:Generic.Ransom.GarrantDecrypt.B.0A449CF2
TencentWin32.Trojan.Gen.Eckd
Ad-AwareDeepScan:Generic.Ransom.GarrantDecrypt.B.0A449CF2
EmsisoftDeepScan:Generic.Ransom.GarrantDecrypt.B.0A449CF2 (B)
ComodoApplicUnwnt@#34bwda28zolzm
F-SecureHeuristic.HEUR/AGEN.1106546
DrWebTrojan.Siggen8.30087
ZillyaTrojan.Gen.Win32.2148
TrendMicroRansom.Win32.MAZE.H
McAfee-GW-EditionBehavesLike.Win32.Adopshel.gc
FireEyeGeneric.mg.f83fb9ce6a83da58
SophosTroj/Ransom-FLM
SentinelOneDFI – Malicious PE
JiangminTrojan.Gen.aeb
WebrootW32.Trojan.Ransom
AviraHEUR/AGEN.1106546
MAXmalware (ai score=100)
Antiy-AVLTrojan[Ransom]/Win32.Gen
MicrosoftRansom:Win32/Maze
ZoneAlarmTrojan-Ransom.Win32.Gen.qqa
GDataDeepScan:Generic.Ransom.GarrantDecrypt.B.0A449CF2
AhnLab-V3Trojan/Win32.MazeRansom.R272934
Acronissuspicious
BitDefenderThetaAI:Packer.83513CFF1E
ALYacTrojan.Ransom.ChaCha
TACHYONRansom/W32.Maze.484352
VBA32BScope.Trojan.Wacatac
PandaTrj/GdSda.A
ESET-NOD32a variant of Win32/Kryptik.HDBT
TrendMicro-HouseCallRansom.Win32.MAZE.H
RisingRansom.Maze!1.B8D7 (CLASSIC)
YandexTrojan.Gen!xihd/J8az9U
IkarusTrojan.Win32.Crypt
eGambitUnsafe.AI_Score_99%
FortinetW32/GenKryptik.DJDC!tr
AVGWin32:Adware-gen [Adw]
AvastWin32:Adware-gen [Adw]
CrowdStrikewin/malicious_confidence_100% (W)
Qihoo-360HEUR/QVM10.2.7AD9.Malware.Gen

How to remove Ransom:Win32/Maze?

Ransom:Win32/Maze removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment