Ransom:Win32/Sodinokibi.G!MSR information

Malware Removal

The Ransom:Win32/Sodinokibi.G!MSR is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware - Review 2020

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
6-day free trial available.

What Ransom:Win32/Sodinokibi.G!MSR virus can do?

  • Possible date expiration check, exits too soon after checking local time
  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

How to determine Ransom:Win32/Sodinokibi.G!MSR?


File Info:

crc32: D019984A
md5: 269f25c4b5493c751613e834e25130a0
name: tmpxruoc27d
sha1: e1cb5dd08d6631d60b3d7bc001046622396591a6
sha256: 140e81cbcce43810d3952c3c2ba9f46c83abfff7579b262b63ae775cca10b2ad
sha512: fb3e375443881e1ca616f3c531bdc2dd4156c3ffbf8ed37770db37c1ac0b875895491a7f3b0674c60d4f0e61193e4e2c1ad50c04b952d399b1733d4af3d22670
ssdeep: 3072:eGZ8Hkk88uv4n8Jj1IjasqQAB0CuRqpm2:eGZqkYC4w5IjPdAuC3
type: PE32 executable (DLL) (GUI) Intel 80386, for MS Windows

Version Info:

0: [No Data]

Ransom:Win32/Sodinokibi.G!MSR also known as:

MicroWorld-eScanDeepScan:Generic.Ransom.Sodinokibi.E745F524
FireEyeGeneric.mg.269f25c4b5493c75
CAT-QuickHealTrojan.CrypmodRI.S13392611
McAfeeSodinokibi!269F25C4B549
ALYacDeepScan:Generic.Ransom.Sodinokibi.E745F524
CylanceUnsafe
CrowdStrikewin/malicious_confidence_100% (D)
BitDefenderDeepScan:Generic.Ransom.Sodinokibi.E745F524
K7GWRiskware ( 0040eff71 )
K7AntiVirusRiskware ( 0040eff71 )
TrendMicroRansom.Win32.SODINOKIBI.SMTH
BitDefenderThetaGen:NN.ZedlaF.34128.hu4@a859RPl
F-ProtW32/Kryptik.AKW.gen!Eldorado
SymantecML.Attribute.HighConfidence
APEXMalicious
AvastWin32:Malware-gen
ClamAVWin.Ransomware.Sodinokibi-7013612-0
GDataDeepScan:Generic.Ransom.Sodinokibi.E745F524
KasperskyHEUR:Trojan-Ransom.Win32.Crypmod.vho
NANO-AntivirusVirus.Win32.Gen.ccmw
TencentMalware.Win32.Gencirc.10ba43fb
Endgamemalicious (high confidence)
EmsisoftDeepScan:Generic.Ransom.Sodinokibi.E745F524 (B)
F-SecureTrojan.TR/Crypt.XPACK.Gen
ZillyaTrojan.Filecoder.Win32.14512
Invinceaheuristic
McAfee-GW-EditionBehavesLike.Win32.Generic.ch
SentinelOneDFI – Malicious PE
CyrenW32/Kryptik.AKW.gen!Eldorado
AviraTR/Crypt.XPACK.Gen
Antiy-AVLTrojan[Ransom]/Win32.Crypmod
ArcabitDeepScan:Generic.Ransom.Sodinokibi.E745F524
ZoneAlarmHEUR:Trojan-Ransom.Win32.Crypmod.vho
MicrosoftRansom:Win32/Sodinokibi.G!MSR
CynetMalicious (score: 100)
AhnLab-V3Trojan/Win32.RL_Ransom.R290570
VBA32BScope.Trojan.DelShad
MAXmalware (ai score=88)
Ad-AwareDeepScan:Generic.Ransom.Sodinokibi.E745F524
MalwarebytesRansom.Sodinokibi
PandaTrj/GdSda.A
ESET-NOD32a variant of Win32/Filecoder.Sodinokibi.H
TrendMicro-HouseCallRansom.Win32.SODINOKIBI.SMTH
RisingRansom.Crypmod!8.DA9 (RDMK:cmRtazqyZxEB3Bs2OMA7JSTuqt43)
YandexTrojan.Filecoder!AXo1VnkepNE
IkarusTrojan-Ransom.Sodinokibi
FortinetW32/Sodinokibi.D!tr.ransom
AVGWin32:Malware-gen

How to remove Ransom:Win32/Sodinokibi.G!MSR?

Ransom:Win32/Sodinokibi.G!MSR removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

Leave a Comment