The Ransom:Win64/AzovCrypt.PA!MTB is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.
What Ransom:Win64/AzovCrypt.PA!MTB virus can do?
File Info:
name: 25E6597CAFBA05BF7DAC.mlwpath: /opt/CAPEv2/storage/binaries/5abd59189a799c957828d856da453441109817869ecaaa9ab4cd4721ddd2eedecrc32: 49809A01md5: 25e6597cafba05bf7dacece24570193dsha1: 52e1cdadbce2ee78453d8246e33e4d40c35d5764sha256: 5abd59189a799c957828d856da453441109817869ecaaa9ab4cd4721ddd2eedesha512: d4f53288a1d9c5211d900089217b1781c17569913c1fd58a6c71a630ec28e3462ece277917bce21c402e88ab49f833162222cee30637942ac735c8bfe919f331ssdeep: 12288:jiS9QaUf1Qs9AMu9kPtJGVh/tSQQcJfcuCYdQeUvyZ9QMNEjSIw3:jiK8f1sNqPtJsZtZQscuCxr6HQMCjSNtype: PE32+ executable (GUI) x86-64, for MS Windowstlsh: T161057C51B3F481F9F1B7AA7199B6A637EA7179515C38C74E4240C68E1F33A40892BB33sha3_384: 8d694c75fc38d2b823b7dae989f715a10b78fcf3db9eeac3931e60e8f9559fb59ebf98ae32443bee0bd008f8bbfde095ep_bytes: e848feffffc82000004c897c24f84883timestamp: 2009-07-13 23:57:52Version Info:
CompanyName: Microsoft CorporationFileDescription: Executable for Hearts GameFileVersion: 6.1.7600.16385 (win7_rtm.090713-1255)InternalName: hearts.exeLegalCopyright: © Microsoft Corporation. All rights reserved.OriginalFilename: hearts.exeProductName: Microsoft® Windows® Operating SystemProductVersion: 6.1.7600.16385OleSelfRegister: Translation: 0x0409 0x04b0
MicroWorld-eScan | Gen:Variant.Ulise.386969 |
FireEye | Gen:Variant.Ulise.386969 |
ALYac | Gen:Variant.Ulise.386969 |
Cylance | Unsafe |
CrowdStrike | win/malicious_confidence_90% (D) |
BitDefender | Gen:Variant.Ulise.386969 |
K7GW | Trojan ( 0059aa0b1 ) |
K7AntiVirus | Trojan ( 0059aa0b1 ) |
Arcabit | Trojan.Ulise.D5E799 |
Cyren | W64/Ipamor.A |
Symantec | ML.Attribute.HighConfidence |
ESET-NOD32 | Win64/Filecoder.GG |
APEX | Malicious |
Kaspersky | UDS:Trojan-Ransom.Win32.Blocker |
Rising | Ransom.Agent!8.6B7 (TFE:2:U9tOTBNOHOO) |
Ad-Aware | Gen:Variant.Ulise.386969 |
Sophos | Mal/Generic-S + Troj/Azov-A |
DrWeb | Win32.HLLP.Azov.2 |
VIPRE | Gen:Variant.Ulise.386969 |
TrendMicro | Ransom.Win64.AZVO.SMYXCJ5 |
McAfee-GW-Edition | BehavesLike.Win64.Generic.bh |
Emsisoft | Gen:Variant.Ulise.386969 (B) |
Ikarus | Trojan-Ransom.FileCrypter |
Jiangmin | Trojan.Blocker.urx |
Antiy-AVL | GrayWare/Win32.Filecoder.gg |
Microsoft | Ransom:Win64/AzovCrypt.PA!MTB |
GData | Gen:Variant.Ulise.386969 |
Detected | |
AhnLab-V3 | Trojan/Win.Generic.R533482 |
McAfee | Artemis!25E6597CAFBA |
MAX | malware (ai score=83) |
Malwarebytes | Ransom.Azov |
Panda | Trj/CI.A |
MaxSecure | Trojan.Malware.121218.susgen |
Fortinet | W64/Filecoder.GG!tr |
AVG | Win64:Trojan-gen |
Avast | Win64:Trojan-gen |
The Malware.AI.1865006162 is considered dangerous by lots of security experts. When this infection is active,…
The Trojan.Win32.Agent.xbnsym is considered dangerous by lots of security experts. When this infection is active,…
The Backdoor:Win32/AsyncRAT is considered dangerous by lots of security experts. When this infection is active,…
The Win32:VB-NPD [Wrm] is considered dangerous by lots of security experts. When this infection is…
The Symmi.4579 is considered dangerous by lots of security experts. When this infection is active,…
The Lazy.487114 is considered dangerous by lots of security experts. When this infection is active,…