Malware

Razy.790339 removal

Malware Removal

The Razy.790339 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Razy.790339 virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Unconventionial binary language: Chinese (Simplified)
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • Authenticode signature is invalid

How to determine Razy.790339?



File Info:

name: E4B3DCC3283A4B355F45.mlw
path: /opt/CAPEv2/storage/binaries/7b1e927dcfb57e803162d95ffe3997320daecfb097adbd9296c594da5dd4ce43
crc32: FA86F974
md5: e4b3dcc3283a4b355f458a939d56d111
sha1: 0b6fe0d0035fc76dd64ef54c1179f0e8b1d43f24
sha256: 7b1e927dcfb57e803162d95ffe3997320daecfb097adbd9296c594da5dd4ce43
sha512: 92ac3004ffb01f807cff83962ea95e72826f32e8e4abe0eeac8c083cca0e77bc72eea584370226895012b18cf4c0fb79c68f818859320429e2a0b7123cfe1679
ssdeep: 1536:gBfRSyWHkVfgk6+L5i6qt099999999999999999999999999999999999999999i:gBfRSyMMocpEypIkM5zwvW+8
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T112540D40A111ACA7D6F85DBA204398754345BE907EDDF7062E287E9A1B72DC384F836F
sha3_384: 1a0e5c61353c475b0b0fb8545c128c8d625783e40544cad031577213dfaf63331d6be7c6c890a8dc05756521418736de
ep_bytes: 68781b4400e8f0ffffff000000000000
timestamp: 2013-11-03 11:51:14


Version Info:

Translation: 0x0804 0x04b0
ProductName: 工程1
FileVersion: 1.00
ProductVersion: 1.00
InternalName: Z文件
OriginalFilename: Z文件.exe

Razy.790339 also known as:

Elasticmalicious (moderate confidence)
MicroWorld-eScanGen:Variant.Razy.790339
FireEyeGeneric.mg.e4b3dcc3283a4b35
ALYacGen:Variant.Razy.790339
ZillyaDownloader.VB.Win32.85586
BitDefenderGen:Variant.Razy.790339
Cybereasonmalicious.3283a4
ArcabitTrojan.Razy.DC0F43
SymantecTrojan.Gen.2
APEXMalicious
NANO-AntivirusTrojan.Win32.VB.crfanu
RisingTrojan.Agent!1.9F52 (CLASSIC)
Ad-AwareGen:Variant.Razy.790339
ComodoMalware@#3pht6bfpe4c1p
VIPREGen:Variant.Razy.790339
McAfee-GW-EditionBehavesLike.Win32.Trojan.dm
EmsisoftGen:Variant.Razy.790339 (B)
IkarusTrojan.Win32.VB
MAXmalware (ai score=85)
Antiy-AVLTrojan/Generic.ASMalwS.9E
KingsoftWin32.Heur.KVMF49.hy.(kcloud)
MicrosoftTrojan:Win32/Wacatac.B!ml
GDataGen:Variant.Razy.790339
GoogleDetected
VBA32TrojanDownloader.VB
PandaGeneric Malware
SentinelOneStatic AI – Suspicious PE
FortinetW32/VB.HCAS!tr.dldr
BitDefenderThetaGen:NN.ZevbaF.34646.sm0@ambwoUab
CrowdStrikewin/malicious_confidence_60% (W)

How to remove Razy.790339?

Razy.790339 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment