Ransom

Ransom:Win64/Ryuk.PB!MTB malicious file

Malware Removal

The Ransom:Win64/Ryuk.PB!MTB is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Ransom:Win64/Ryuk.PB!MTB virus can do?

    How to determine Ransom:Win64/Ryuk.PB!MTB?

    

    File Info:
    
crc32: 976101E5
    md5: 2ca346971318fef0ba6bc73a6c3ea09b
    name: 2CA346971318FEF0BA6BC73A6C3EA09B.mlw
    sha1: d89a3b5ecaa908adf3d0eb164fe66a5462d6ed06
    sha256: 54b3044b8c1c8a315fb33eb3b832cf6ba13856756e82ebc363e094bfce9b8d99
    sha512: 6e6ad32d51105d3b69dfc221f4945c260e8f9a786be597fbe44dedf17bdcb7b91375522da4e8b1b50820e98e0d283357ee484665ce7a8f7540dfe8a8c2925889
    ssdeep: 3072:Q4EKlYeS6GTPkra8Og8/6jhQQF40uUNCKcjricD:DKTIOgOOy8eric
    type: PE32+ executable (GUI) x86-64, for MS Windows
    

    Version Info:
    
0: [No Data]

    Ransom:Win64/Ryuk.PB!MTB also known as:

    Elasticmalicious (high confidence)
    CynetMalicious (score: 99)
    CAT-QuickHealRansom.Ryuk.S12119064
    ALYacGen:Variant.Mikey.108636
    CylanceUnsafe
    CrowdStrikewin/malicious_confidence_60% (D)
    Cybereasonmalicious.71318f
    SymantecRansom.Ryuk
    ESET-NOD32a variant of Win64/Filecoder.Ryuk.G
    APEXMalicious
    AvastWin64:RansomX-gen [Ransom]
    ClamAVWin.Ransomware.Ulise-7594825-0
    KasperskyHEUR:Trojan-Ransom.Win32.Generic
    BitDefenderGen:Variant.Mikey.108636
    MicroWorld-eScanGen:Variant.Mikey.108636
    Ad-AwareGen:Variant.Mikey.108636
    SophosML/PE-A + Troj/Ryuk-AC
    TrendMicroRansom.Win64.RYUK.SMTH
    McAfee-GW-EditionBehavesLike.Win64.Injector.ch
    FireEyeGeneric.mg.2ca346971318fef0
    EmsisoftGen:Variant.Mikey.108636 (B)
    AviraHEUR/AGEN.1127994
    MicrosoftRansom:Win64/Ryuk.PB!MTB
    ArcabitTrojan.Mikey.D1A85C
    ZoneAlarmHEUR:Trojan-Ransom.Win32.Generic
    GDataGen:Variant.Mikey.108636
    AhnLab-V3Trojan/Win64.Ransom.C4008505
    McAfeeRansomware-GWE!2CA346971318
    MAXmalware (ai score=84)
    MalwarebytesRansom.Ryuk
    TrendMicro-HouseCallRansom.Win64.RYUK.SMTH
    YandexTrojan.GenAsa!vcfn5mPcGuo
    IkarusTrojan-Ransom.Ryuk
    FortinetW64/Filecoder.DD85!tr.ransom
    AVGWin64:RansomX-gen [Ransom]

    How to remove Ransom:Win64/Ryuk.PB!MTB?

    Ransom:Win64/Ryuk.PB!MTB removal tool
    • Download and install GridinSoft Anti-Malware.
    • Open GridinSoft Anti-Malware and perform a “Standard scan“.
    • Move to quarantine” all items.
    • Open “Tools” tab – Press “Reset Browser Settings“.
    • Select proper browser and options – Click “Reset”.
    • Restart your computer.

    You may also like

    About the author

    Paul Valéry

    I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

    View all posts

    Leave a Comment