Malware

Razy.638614 (file analysis)

Malware Removal

The Razy.638614 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Razy.638614 virus can do?

  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

How to determine Razy.638614?



File Info:

crc32: CBB924D9
md5: c51bf6ac04339502e6b3e70e2d925a26
name: 1982930181.exe
sha1: 02a5073b5c4374443d59c7a70ff0f01ef950de76
sha256: 5ff09962b4e89b886e68a05bb9f27c48c887b725700b86cd940d259ddbd3cd4f
sha512: e6f3a9a6aec5ba7d7b938797ccb34e231fdce1967ca9d06a070ed3904f077c798fb811f86a60e05c604a9963f03dce992d3f4d3f35ea4e956719738697f9a110
ssdeep: 384:W8OcigLB2/6R/5fV8yBtiDLrjpj5fn0g4XjPhu3a2GDitRCYgnFQhvq/fs:nNV8yBtiDLrjpj5fn0XkS2/unFgqk
type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows


Version Info:

Translation: 0x0000 0x04b0
LegalCopyright:  
Assembly Version: 0.0.0.0
InternalName: Tew.exe
FileVersion: 0.0.0.0
ProductVersion: 0.0.0.0
FileDescription:  
OriginalFilename: Tew.exe

Razy.638614 also known as:

MicroWorld-eScanGen:Variant.Razy.638614
FireEyeGeneric.mg.c51bf6ac04339502
CylanceUnsafe
BitDefenderGen:Variant.Razy.638614
Cybereasonmalicious.b5c437
APEXMalicious
GDataGen:Variant.Razy.638614
Endgamemalicious (high confidence)
EmsisoftGen:Variant.Razy.638614 (B)
F-SecureTrojan.TR/Dropper.Gen
Invinceaheuristic
Trapminemalicious.moderate.ml.score
AviraTR/Dropper.Gen
MAXmalware (ai score=86)
MicrosoftTrojan:Win32/Wacatac.C!ml
ArcabitTrojan.Razy.D9BE96
ALYacGen:Variant.Razy.638614
Ad-AwareGen:Variant.Razy.638614
ESET-NOD32a variant of MSIL/TrojanDownloader.Small.CCP
SentinelOneDFI – Malicious PE
eGambitUnsafe.AI_Score_99%
BitDefenderThetaGen:NN.ZemsilF.34106.cm2@auGfl8p
CrowdStrikewin/malicious_confidence_100% (D)

How to remove Razy.638614?

Razy.638614 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment