Malware

Razy.819256 (B) removal tips

Malware Removal

The Razy.819256 (B) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Razy.819256 (B) virus can do?

  • Dynamic (imported) function loading detected
  • CAPE extracted potentially suspicious content
  • Authenticode signature is invalid
  • Binary compilation timestomping detected

How to determine Razy.819256 (B)?



File Info:

name: 146ABB3B04DB40A15C68.mlw
path: /opt/CAPEv2/storage/binaries/926b4ab7b53c8683b376329910080bcfa600586b6d533727e4e24da769501c20
crc32: 56F4330F
md5: 146abb3b04db40a15c68cb96d4282d57
sha1: d5ca323eca79e7ddfca554a5bd19015b1ea7fd13
sha256: 926b4ab7b53c8683b376329910080bcfa600586b6d533727e4e24da769501c20
sha512: 441633b4a020c3df55877464745610f0e416324a687f40662ddad3ccce15cd1d991bcda9934fb2febee42e510b6823bfb542b8fcb096a15edeb9e37aee8edd55
ssdeep: 12288:nYVYBf0fKWgEgKSg3xksXtBlXKfdedL4+3A65usT852ynFVY2:YuBYB/OVZ5jVY2
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T11215A6243BE62069F377FF75AED07497B72AB1232601A4D91D92234A8637911DDC2C3E
sha3_384: 96e0d84e42b48c4fb98eb4112db6ffac41e4943ecb5950c1a0b8c67f37d30dc8e133f4ba1e6ff4eea3ea5805e8a494a0
ep_bytes: ff2500204000302f4832525034787a5a
timestamp: 2090-06-20 02:30:48


Version Info:

Translation: 0x0000 0x04b0
Comments: NoTrial
CompanyName: https://allkey.org
FileDescription: Allkeys
FileVersion: 1.1.2210.2021
InternalName: Allkeys.exe
LegalCopyright: NoTrial ©  2021
LegalTrademarks: 
OriginalFilename: Allkeys.exe
ProductName: FREE GAMES
ProductVersion: 1.1.2210.2021
Assembly Version: 1.1.2210.2021

Razy.819256 (B) also known as:

LionicTrojan.Win32.Razy.4!c
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Razy.819256
FireEyeGeneric.mg.146abb3b04db40a1
McAfeeGenericRXND-PF!146ABB3B04DB
MalwarebytesMalware.AI.4148710423
SangforSuspicious.Win32.Razy.819256
CrowdStrikewin/malicious_confidence_60% (W)
BitDefenderThetaGen:NN.ZemsilF.34182.2m0@ay005An
SymantecML.Attribute.HighConfidence
TrendMicro-HouseCallTROJ_GEN.R007C0PAH22
Paloaltogeneric.ml
CynetMalicious (score: 100)
BitDefenderGen:Variant.Razy.819256
AvastWin32:Malware-gen
EmsisoftGen:Variant.Razy.819256 (B)
TrendMicroTROJ_GEN.R007C0PAH22
McAfee-GW-EditionGenericRXND-PF!146ABB3B04DB
SophosGeneric ML PUA (PUA)
MaxSecureTrojan.Malware.300983.susgen
MAXmalware (ai score=84)
GDataGen:Variant.Razy.819256
AhnLab-V3Trojan/Win32.CoinMiner.R369698
ALYacGen:Variant.Razy.819256
APEXMalicious
RisingTrojan.Generic/MSIL@AI.100 (RDM.MSIL:O3swth+Ls1j45aS2MgpxZw)
SentinelOneStatic AI – Malicious PE
FortinetPossibleThreat
AVGWin32:Malware-gen
Cybereasonmalicious.b04db4
PandaTrj/CI.A

How to remove Razy.819256 (B)?

Razy.819256 (B) removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment