Ransom

Should I remove “Ransom:Win32/Sekhmet!MSR”?

Malware Removal

The Ransom:Win32/Sekhmet!MSR is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Ransom:Win32/Sekhmet!MSR virus can do?

  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid

How to determine Ransom:Win32/Sekhmet!MSR?



File Info:

name: 7087C55287578A3660CD.mlw
path: /opt/CAPEv2/storage/binaries/4139c96d16875d1c3d12c27086775437b26d3c0ebdcdc258fb012d23b9ef8345
crc32: 92A3680A
md5: 7087c55287578a3660cd86435241e59a
sha1: 5a346fb957abeba389424dc57636edcacc58b5ba
sha256: 4139c96d16875d1c3d12c27086775437b26d3c0ebdcdc258fb012d23b9ef8345
sha512: b7ec972df68a5f215378939d0166bfbca1b48b841ec362ed064948f6db4a0c3b97297be80891081d485679d208ffbdefb29e72ec7ceaea8fa0b7d10acef8aba1
ssdeep: 12288:ZPPCQ91nFoMWrwSFOAg56cTdSztKe2f74OsmUpmMWXaHYi/Evv4bp:ZiH2Cpi1BUpfwaHt1
type: PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
tlsh: T111F4CF207C848572CCF620F943ECB53215ADA8F0073859CB16DD1BFBDAA45D27B36A66
sha3_384: a1ebab137153913747b30d03113fa3c321c268ea282414dd54852b3438c87584c49a6839c705d754a7d97c297d20ca58
ep_bytes: e9947d0000e97aa30300e932630100e9
timestamp: 2020-10-24 23:34:46


Version Info:

0: [No Data]

Ransom:Win32/Sekhmet!MSR also known as:

BkavW32.Common.7F9ECDD4
LionicTrojan.Win32.Egregor.4!c
Elasticmalicious (high confidence)
DrWebTrojan.Encoder.32897
MicroWorld-eScanTrojan.GenericKDZ.84940
FireEyeGeneric.mg.7087c55287578a36
CAT-QuickHealTrojan.BsymemPMF.S24877901
SkyhighBehavesLike.Win32.Smokeloader.bh
McAfeeRansom-Egregor!7087C5528757
Cylanceunsafe
ZillyaTrojan.Kryptik.Win32.2597939
SangforRansom.Win32.Kryptik.Vomo
K7AntiVirusTrojan ( 00571ac01 )
AlibabaRansom:Win32/Sekhmet.a5821dbe
K7GWTrojan ( 00571ac01 )
CrowdStrikewin/malicious_confidence_100% (W)
ArcabitTrojan.Generic.D14BCC
SymantecDownloader
ESET-NOD32a variant of Win32/Kryptik.HGXV
CynetMalicious (score: 100)
APEXMalicious
ClamAVWin.Packed.Zusy-9804515-0
KasperskyHEUR:Trojan.Win32.Bsymem.gen
BitDefenderTrojan.GenericKDZ.84940
NANO-AntivirusTrojan.Win32.Bsymem.iawehr
AvastWin32:Egregor-F [Ransom]
TencentWin32.Trojan.Bsymem.Vmhl
TACHYONRansom/W32.Egregor.785408
EmsisoftTrojan.GenericKDZ.84940 (B)
F-SecureTrojan.TR/Redcap.bpqxr
VIPRETrojan.GenericKDZ.84940
TrendMicroRansom.Win32.EGREGOR.SMYAAK-J
SophosMal/Sekhmet-A
IkarusTrojan-Ransom.Egregor
JiangminTrojan.Bsymem.aip
WebrootW32.Trojan.Gen
VaristW32/Kryptik.CGQ.gen!Eldorado
AviraTR/Redcap.bpqxr
Antiy-AVLTrojan/Win32.Kryptik
XcitiumMalware@#3toznakkuqni8
MicrosoftRansom:Win32/Sekhmet!MSR
ZoneAlarmHEUR:Trojan.Win32.Bsymem.gen
GDataTrojan.GenericKDZ.84940
GoogleDetected
AhnLab-V3Trojan/Win32.Kryptik.R354842
VBA32Trojan.Bsymem
ALYacTrojan.Ransom.Egregor
MAXmalware (ai score=94)
MalwarebytesMalware.AI.3244929415
PandaTrj/GdSda.A
TrendMicro-HouseCallRansom.Win32.EGREGOR.SMYAAK-J
RisingTrojan.Kryptik!8.8 (TFE:5:Gn9Vn3cQ3xN)
YandexTrojan.Bsymem!QKqqi/tCgXM
SentinelOneStatic AI – Malicious PE
MaxSecureTrojan.Malware.73746529.susgen
FortinetW32/Kryptik.HGHT!tr
AVGWin32:Egregor-F [Ransom]
DeepInstinctMALICIOUS

How to remove Ransom:Win32/Sekhmet!MSR?

Ransom:Win32/Sekhmet!MSR removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment