Malware

Razy.824942 removal instruction

Malware Removal

The Razy.824942 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Razy.824942 virus can do?

  • Dynamic (imported) function loading detected
  • CAPE extracted potentially suspicious content
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • Binary compilation timestomping detected

How to determine Razy.824942?



File Info:

name: 9E265C804A5343423B8E.mlw
path: /opt/CAPEv2/storage/binaries/42165dc6a341efb90049c1d3e7e0ac3ce91c7a82592359a448e66ff370598eed
crc32: 0B3B18DD
md5: 9e265c804a5343423b8eabef6e185070
sha1: 2117980aad0e00dbb0ed018990e3d770d756d7f5
sha256: 42165dc6a341efb90049c1d3e7e0ac3ce91c7a82592359a448e66ff370598eed
sha512: ea5b1f5fd85c9d36ccf6b0a5e94c5b52c55066dfa1a369ccad61093e4537a8e4454bde10343dbae76b92adf438a591bcb341906bf26bdc16b8db1c68b9060bc2
ssdeep: 6144:Ju2U/iRvReqWn6dBG+DKah5/zdwQvSEfRACY:Ju2U/iRvReJIoaj/5aEe
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1DD449C51BA04D616C65A18B2C4F4ABF002715C33E651CB6BF8DABD6FBDB17C06538A0B
sha3_384: c9df2512d39d9dbcdb3e4b4c0dcabcb48d36fbef3e52330a4555f25df450b685172ca48eaf758d89b86bcad84aea8b41
ep_bytes: ff250020400000000000000000000000
timestamp: 2094-04-06 00:19:41


Version Info:

Translation: 0x0000 0x04b0
Comments: Trainer Made By LinGon
CompanyName: LinGon
FileDescription: LinGon X64 Tr-Engine
FileVersion: 1.0.4.0
InternalName: LinGonX64Tr-Engine.exe
LegalCopyright: Copyright © LinGon
LegalTrademarks: LinGon
OriginalFilename: LinGonX64Tr-Engine.exe
ProductName: LinGon X64 Tr-Engine
ProductVersion: 1.0.4.0
Assembly Version: 1.0.4.0

Razy.824942 also known as:

LionicTrojan.Win32.Razy.4!c
MicroWorld-eScanGen:Variant.Razy.824942
FireEyeGen:Variant.Razy.824942
ALYacGen:Variant.Razy.824942
SangforTrojan.Win32.Wacatac.B
Cybereasonmalicious.04a534
SymantecML.Attribute.HighConfidence
APEXMalicious
BitDefenderGen:Variant.Razy.824942
Ad-AwareGen:Variant.Razy.824942
EmsisoftGen:Variant.Razy.824942 (B)
IkarusTrojan-Dropper.MSIL.Agent
GDataGen:Variant.Razy.824942
MAXmalware (ai score=86)
AhnLab-V3Malware/Win32.RL_Generic.C4301106
McAfeeGenericRXNG-RT!9E265C804A53
TrendMicro-HouseCallTROJ_GEN.R002H06AB22
RisingTrojan.Generic/MSIL@AI.90 (RDM.MSIL:oaS11uRRGGjdEUYwuajFqA)
SentinelOneStatic AI – Suspicious PE

How to remove Razy.824942?

Razy.824942 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment