Razy.949766 removal guide

The Razy.949766 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Razy.949766 virus can do?

Unconventionial language used in binary resources: Portuguese
The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid
Anomalous binary characteristics

How to determine Razy.949766?


File Info:
name: 7CEE4B8CD85F82F282F4.mlw
path: /opt/CAPEv2/storage/binaries/691d4f6d3af260f23b357cb3d2cbdbb912270de475b3721c35bf54393a28bad7
crc32: 291DA873
md5: 7cee4b8cd85f82f282f45841ef6fa04a
sha1: 0dbc15917c17062a432944a6745caa0b84ddad1f
sha256: 691d4f6d3af260f23b357cb3d2cbdbb912270de475b3721c35bf54393a28bad7
sha512: 4f7d23eb287b21aef4c2b2a0dd16c3415cbbddf1688aa400a73e125853bba72ed3b0b3dee176b3504094c3d86136ad0242c2b19d7ed3110e86905787c0319f76
ssdeep: 12288:q1LjH/MZxOJnFaZKaPIm+8+HEL+aVU/kWV:qJzffMi
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1A5E46B92FBE99C97CA2C437BCDF7831E333AF1616317CF07462869721A167D2A890645
sha3_384: 92409e32f19382d465e516799a19e335c6eac05ab6b7ca09af96b9cfacf2495b618ed5c63d61cece75467e507b07f8cc
ep_bytes: 5589e557565383e4f083ec10c7042401
timestamp: 2021-12-03 21:50:43

Version Info:
CompanyName: Microsoft Corporation
FileDescription: Wine Explorer
FileVersion: 6.1.7601.17567
InternalName: 
LegalCopyright: Copyright (c) 1993-2021 the Wine project authors (see the file AUTHORS for a complete list)
OriginalFilename: explorer.exe
ProductName: Wine
ProductVersion: 6.1.7601.17567
Translation: 0x0409 0x04b0

Razy.949766 also known as:

MicroWorld-eScan	Gen:Variant.Razy.949766
FireEye	Gen:Variant.Razy.949766
Cylance	Unsafe
BitDefender	Gen:Variant.Razy.949766
Cybereason	malicious.cd85f8
BitDefenderTheta	Gen:NN.ZexaF.34062.O83@aaneiAjG
Ad-Aware	Gen:Variant.Razy.949766
Emsisoft	Gen:Variant.Razy.949766 (B)
MAX	malware (ai score=89)
Microsoft	Trojan:Win32/Sabsik.FL.B!ml
GData	Gen:Variant.Razy.949766
VBA32	BScope.Trojan.Emotet
ALYac	Gen:Variant.Razy.949766
APEX	Malicious

How to remove Razy.949766?

Razy.949766 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X