Malware

Razy.868979 (B) removal

Malware Removal

The Razy.868979 (B) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Razy.868979 (B) virus can do?

  • Executable code extraction
  • Creates RWX memory
  • Network activity detected but not expressed in API logs

How to determine Razy.868979 (B)?



File Info:

crc32: F20A817A
md5: 012e7f66ca267ac5e633c8ae23b87b82
name: 012E7F66CA267AC5E633C8AE23B87B82.mlw
sha1: de5ce2c29fd24b89d98dbed8ea0cbae43495c1c8
sha256: 198dd74a30600e239ab91d8a22db85c8a567ccdce3959b6963db6d46e68dbb7e
sha512: 45ee59e296112712047aa73b513db89fbc222ee65229c207a9065a50771df9e823923430ec1c66ce9de48bb96517de4bc2fe13fbe1fca13782a1e8ef51778bf7
ssdeep: 3072:W3b4xVubbXP/NTccbsFvCeLmXH57V30e8Pj:W3XvFczvYpQP
type: PE32 executable (DLL) (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright: Copyright xa9 2018
InternalName: x2otfb
FileVersion: 7.2.5422.00
Full Version: 7.2.5_000-b00
CompanyName: Oracle Corporation
ProductName: Xhot(BM) Ltloehey YO 8
ProductVersion: 7.2.5422.00
FileDescription: Java(TM) Platform SE binary
OriginalFilename: x2otfb.dll
Translation: 0x0000 0x04b0

Razy.868979 (B) also known as:

Elasticmalicious (high confidence)
DrWebTrojan.Dridex.776
CynetMalicious (score: 100)
ALYacGen:Variant.Bulz.471860
CylanceUnsafe
SangforTrojan.Win32.Save.a
CrowdStrikewin/malicious_confidence_100% (W)
K7GWRiskware ( 0040eff71 )
K7AntiVirusRiskware ( 0040eff71 )
ESET-NOD32a variant of Win32/Kryptik.HKVT
APEXMalicious
AvastWin32:Malware-gen
KasperskyUDS:Trojan.Multi.GenericML.xnet
BitDefenderGen:Variant.Razy.868979
MicroWorld-eScanGen:Variant.Razy.868979
Ad-AwareGen:Variant.Razy.868979
SophosML/PE-A
BitDefenderThetaGen:NN.ZedlaF.34690.ku8@a0QAw6c
VIPRETrojan.Win32.Generic!BT
FireEyeGeneric.mg.012e7f66ca267ac5
EmsisoftGen:Variant.Razy.868979 (B)
SentinelOneStatic AI – Suspicious PE
AviraTR/Crypt.Agent.fhitr
KingsoftWin32.Troj.Undef.(kcloud)
MicrosoftTrojan:Win32/Emotet.LK!ml
ArcabitTrojan.Razy.DD4273
GDataGen:Variant.Razy.868979
AhnLab-V3Trojan/Win.Dridex.R419934
Acronissuspicious
McAfeeArtemis!012E7F66CA26
MAXmalware (ai score=82)
MalwarebytesTrojan.Dridex
RisingTrojan.Convagent!8.12323 (TFE:dGZlOgHUrrNVRPAKYQ)
IkarusTrojan-Banker.Dridex
FortinetW32/EncPk.APX!tr
AVGWin32:Malware-gen

How to remove Razy.868979 (B)?

Razy.868979 (B) removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment