Ransom

Ransom:Win32/RagnarLockerCrypt.DA!MTB removal guide

Malware Removal

The Ransom:Win32/RagnarLockerCrypt.DA!MTB is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Ransom:Win32/RagnarLockerCrypt.DA!MTB virus can do?

  • The executable is compressed using UPX

Related domains:

z.whorecord.xyz
a.tomx.xyz

How to determine Ransom:Win32/RagnarLockerCrypt.DA!MTB?



File Info:

crc32: 6DF4704C
md5: edd8ce7eab76044178f8687f63271816
name: EDD8CE7EAB76044178F8687F63271816.mlw
sha1: 1101fe9d38c4b94319abbfc3dcf91d6aa8444a81
sha256: 6b78c21ffb3472281b9f9e3d6f59fc923ff15ed6a42747f9a3974229906717ce
sha512: ffda78da10e5ba9213f0aeb2e3070029f0faae2cb841bdb6e8be4daad392f981bdb5f22876657c9e939156d64f4a76a99c7b91069a95ff0814e3ab2203ae9b77
ssdeep: 1536:1vKSz7JSYOTcZ4+Ir2cJI6A4fS58yqiwUFkOceFgX+22UdF2yIj6+OYuBf5lfED:coJSOQr2caLXEQFZcGgX52SpjVsuW
type: PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed


Version Info:

0: [No Data]

Ransom:Win32/RagnarLockerCrypt.DA!MTB also known as:

BkavW32.AIDetect.malware1
K7AntiVirusTrojan ( 004bcce41 )
Elasticmalicious (high confidence)
CynetMalicious (score: 100)
CylanceUnsafe
SangforTrojan.Win32.Save.a
CrowdStrikewin/malicious_confidence_100% (D)
K7GWTrojan ( 004bcce41 )
Cybereasonmalicious.d38c4b
APEXMalicious
AvastWin32:RansomX-gen [Ransom]
ClamAVWin.Trojan.RagnarLocker-7997800-0
SophosML/PE-A
ComodoPacked.Win32.MUPX.Gen@24tbus
BitDefenderThetaGen:NN.ZexaF.34692.imZ@aCtEELd
McAfee-GW-EditionBehavesLike.Win32.Generic.cm
FireEyeGeneric.mg.edd8ce7eab760441
SentinelOneStatic AI – Malicious PE
AviraTR/Patched.Ren.Gen
eGambitUnsafe.AI_Score_62%
MicrosoftRansom:Win32/RagnarLockerCrypt.DA!MTB
McAfeeRansom-Ragnar!EDD8CE7EAB76
RisingMalware.Heuristic!ET#97% (RDMK:cmRtazqBSKO9kbaURbRAO3FR0yTJ)
IkarusTrojan.Crypter
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/Ransom.RAGNAR!tr
AVGWin32:RansomX-gen [Ransom]

How to remove Ransom:Win32/RagnarLockerCrypt.DA!MTB?

Ransom:Win32/RagnarLockerCrypt.DA!MTB removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment