Malware

Razy.989425 removal guide

Malware Removal

The Razy.989425 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Razy.989425 virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • Dynamic (imported) function loading detected
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid

How to determine Razy.989425?



File Info:

name: 62945163141446EA74B9.mlw
path: /opt/CAPEv2/storage/binaries/5a1ee2c27ecaf8419242d7cd9a75f1acd76b2ff3f4944e8da63f730bb25b568f
crc32: 71D7D220
md5: 62945163141446ea74b98e8ba950ad94
sha1: 83f6a4968641f0c6b62b9821cd0db1c37179b8a8
sha256: 5a1ee2c27ecaf8419242d7cd9a75f1acd76b2ff3f4944e8da63f730bb25b568f
sha512: bb306bd917ba9af3113688d49039d8f02f38277c56e7e1722212d0ff049cd7dfc43ed45385c91f29a1c353bdb743b49ba159f7461cdc6435e63ee06e6deed4da
ssdeep: 3072:IWeNcLdZdrcIZolPamsyGz0hiEZLBo/bsW:I6LdDrzZcPtGzYiSlozs
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1B6A3E12036D8A273F3AD93F348A3C1552967BD1057325A5F394D7E2E1E7C2092E90B6B
sha3_384: 5d7194a5d65cb265bf4a74af1268a5ad0200a628c2443cd62b62121482a59cb52ad3565e21a15f8c8324d86a72d15410
ep_bytes: 6864164000e8eeffffff000000000000
timestamp: 2021-09-08 17:19:26


Version Info:

Translation: 0x0409 0x04b0
ProductName: Project1
FileVersion: 1.00
ProductVersion: 1.00
InternalName: Project1
OriginalFilename: Project1.exe

Razy.989425 also known as:

BkavW32.AIDetect.malware1
LionicTrojan.Win32.Razy.4!c
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Razy.989425
ALYacGen:Variant.Razy.989425
CylanceUnsafe
Cybereasonmalicious.68641f
SymantecML.Attribute.HighConfidence
APEXMalicious
BitDefenderGen:Variant.Razy.989425
AvastWin32:Malware-gen
Ad-AwareGen:Variant.Razy.989425
EmsisoftGen:Variant.Razy.989425 (B)
VIPRETrojan.Win32.VBInject.gen (v)
McAfee-GW-EditionBehavesLike.Win32.Trojan.ch
FireEyeGeneric.mg.62945163141446ea
SophosMal/Generic-S
SentinelOneStatic AI – Suspicious PE
GDataGen:Variant.Razy.989425
MaxSecureTrojan.Malware.300983.susgen
AviraTR/Dropper.Gen
ArcabitTrojan.Razy.DF18F1
MicrosoftTrojan:Win32/Wacatac.B!ml
CynetMalicious (score: 100)
McAfeeArtemis!629451631414
MAXmalware (ai score=84)
MalwarebytesMachineLearning/Anomalous.100%
TrendMicro-HouseCallTROJ_GEN.R002H09KQ21
IkarusTrojan.Dropper
eGambitUnsafe.AI_Score_99%
FortinetW32/PossibleThreat
AVGWin32:Malware-gen
CrowdStrikewin/malicious_confidence_80% (W)

How to remove Razy.989425?

Razy.989425 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment