Risk

What is “RiskWare.Agent.GO”?

Malware Removal

The RiskWare.Agent.GO is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What RiskWare.Agent.GO virus can do?

  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid

How to determine RiskWare.Agent.GO?



File Info:

name: 17DE3211BA4C96E1E2B1.mlw
path: /opt/CAPEv2/storage/binaries/a166861c3cfab8174a9a995cdf659c155fea6e64997575f37d930c1c1fd7b652
crc32: 8A886380
md5: 17de3211ba4c96e1e2b190a8297874f3
sha1: 094981936ba52aa0c40e1ffaee05d3fde25c6709
sha256: a166861c3cfab8174a9a995cdf659c155fea6e64997575f37d930c1c1fd7b652
sha512: ec0cec14d939739043cc559514fe0937f8cf76cb151bf74876d6ad3d274b2409b8690f1fae8e323debf113cde3a8bf8aaa0ec71967322ae1ceda25509879889b
ssdeep: 49152:U6BdFwKkpGdvnHjd9w8q1MP4VQEy+aocCCqjmAEzxfbQ9H:U6BdFDFvjd9r4VQEPXjmAsdbaH
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T198F57C51FC9B54B2EE42153218A792EF2334AD0A5F31DBC7DA087F7EE8375910932299
sha3_384: fce6975dc9180526f8ef2d55a9366abfa1b3021453425341169bb3a4bdfdbb4f51bcb0625b66e3a1369fdede09e545c9
ep_bytes: e98bddffffcccccccccccccccccccccc
timestamp: 1970-01-01 00:00:00


Version Info:

0: [No Data]

RiskWare.Agent.GO also known as:

LionicTrojan.Win32.Generic.4!c
DrWebTrojan.DownLoader45.37515
CAT-QuickHealTrojan.Agent
McAfeeArtemis!17DE3211BA4C
MalwarebytesRiskWare.Agent.GO
SangforTrojan.Win32.Agent.Vfd1
Elasticmalicious (moderate confidence)
APEXMalicious
AvastWin32:Malware-gen
F-SecureTrojan.TR/Crypt.XPACK.Gen
McAfee-GW-EditionBehavesLike.Win32.Generic.wh
WebrootW32.Malware.Gen
AviraTR/Crypt.XPACK.Gen
Antiy-AVLTrojan/Win32.Wacatac
ViRobotTrojan.Win.Z.Agent.3450880.A
CynetMalicious (score: 100)
AhnLab-V3Trojan/Win.Generic.C5375559
VBA32suspected of Trojan.Downloader.gen
RisingTrojan.Generic@AI.98 (RDML:etYxsX4IN+1BgDDZqpr4tQ)
FortinetW32/PossibleThreat
AVGWin32:Malware-gen
DeepInstinctMALICIOUS

How to remove RiskWare.Agent.GO?

RiskWare.Agent.GO removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment