Malware

What is “Strictor.246601 (B)”?

Malware Removal

The Strictor.246601 (B) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware - Review 2020

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
6-day free trial available.

What Strictor.246601 (B) virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • Reads data out of its own binary image
  • CAPE extracted potentially suspicious content
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • CAPE detected the EnigmaStub malware family
  • Anomalous binary characteristics

How to determine Strictor.246601 (B)?


File Info:

name: 4B7F35A9D95D4BC1C110.mlw
path: /opt/CAPEv2/storage/binaries/7762abda89620563e35a9540902ef6b7c7413de6a81e0ad60856a2ca3aff0b6b
crc32: D38343A2
md5: 4b7f35a9d95d4bc1c110a974288782ef
sha1: 534d61c8e82a51ce85ebf7279e922ec1981a6c96
sha256: 7762abda89620563e35a9540902ef6b7c7413de6a81e0ad60856a2ca3aff0b6b
sha512: f11a61761d014c68f2e723086fa269215da332f2da1fba3c2b3b9e81aa64f2acedf537d2bd08b336530830bc51213fa961f39d7edf15fade68d5ea986e53309a
ssdeep: 24576:pHHVQOiT4rqT5/vtNWjP3pWqjbkf2jnswoXyWBCj1sKTeC:MOiRT5HCZQf2oXyWBCjSB
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T15655127BED0EADA2C698CE35742E584E9119EEA00D64B602E784B2F90B73F557373C05
sha3_384: f310d8a891f31d51bd94e2d250e264d16659471ee789bb9c37521ce63a7364ee3da5943287e34da2ab75541441d1e4a4
ep_bytes: 558bec83c4f0b800104000e801000000
timestamp: 2012-04-13 14:57:44

Version Info:

0: [No Data]

Strictor.246601 (B) also known as:

BkavW32.AIDetect.malware1
LionicRiskware.Win32.Strictor.1!c
tehtrisGeneric.Malware
MicroWorld-eScanGen:Variant.Strictor.246601
FireEyeGeneric.mg.4b7f35a9d95d4bc1
CAT-QuickHealTrojan.Strictor
McAfeeArtemis!4B7F35A9D95D
CylanceUnsafe
VIPREGen:Variant.Strictor.246601
SangforTrojan.Win32.Agent.Vmvn
K7AntiVirusTrojan ( 005835da1 )
AlibabaPacked:Win32/EnigmaProtector.2dee1f61
K7GWTrojan ( 005835da1 )
CrowdStrikewin/malicious_confidence_70% (W)
SymantecML.Attribute.HighConfidence
Elasticmalicious (high confidence)
ESET-NOD32a variant of Win32/Packed.EnigmaProtector.J suspicious
APEXMalicious
Paloaltogeneric.ml
CynetMalicious (score: 100)
BitDefenderGen:Variant.Strictor.246601
SUPERAntiSpywareHack.Tool/Gen-Patcher
AvastWin32:Malware-gen
Ad-AwareGen:Variant.Strictor.246601
EmsisoftGen:Variant.Strictor.246601 (B)
ZillyaTrojan.EnigmaProtector.Win32.4763
McAfee-GW-EditionBehavesLike.Win32.Generic.tc
Trapminemalicious.high.ml.score
SophosMal/Generic-S
SentinelOneStatic AI – Malicious PE
GDataGen:Variant.Strictor.246601
Antiy-AVLTrojan/Generic.ASBOL.C669
MicrosoftTrojan:Win32/Wacatac.B!ml
GoogleDetected
AhnLab-V3Trojan/Win.Generic.C5223955
Acronissuspicious
BitDefenderThetaGen:NN.ZexaF.34606.qHW@aa0taak
ALYacGen:Variant.Strictor.246601
MAXmalware (ai score=86)
MalwarebytesMalware.Heuristic.1003
TrendMicro-HouseCallTROJ_GEN.R002H09HF22
RisingPUF.Pack-Enigma!1.BA33 (CLASSIC)
Ikarusnot-a-virus:RiskTool.Win32.Patcher
MaxSecureTrojan.Malware.186859347.susgen
AVGWin32:Malware-gen
Cybereasonmalicious.9d95d4

How to remove Strictor.246601 (B)?

Strictor.246601 (B) removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment