Malware

Strictor.248692 information

Malware Removal

The Strictor.248692 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Strictor.248692 virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Creates RWX memory
  • Dynamic (imported) function loading detected
  • Enumerates running processes
  • Expresses interest in specific running processes
  • CAPE extracted potentially suspicious content
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • Creates a copy of itself

How to determine Strictor.248692?



File Info:

name: A6E0A70D2A9CD18AFA72.mlw
path: /opt/CAPEv2/storage/binaries/878ce56dbecc4edfe045d2a820a569a62042016cc262d75c01f658f3d56ea14b
crc32: 9E20030D
md5: a6e0a70d2a9cd18afa7277e76e7d4f32
sha1: 35d401dd28ae31dbfe5c33748d30ea19d1a58e3f
sha256: 878ce56dbecc4edfe045d2a820a569a62042016cc262d75c01f658f3d56ea14b
sha512: 680c805944408eb3f80c52cc8ac2855338891a7bd11ba50dd06e27f77d1e3b297f07d2b1c64ff828f13cff90ece9231fc9699709a06d0521841acdbeeeaf0dde
ssdeep: 24576:pMmwMszMJAMOJBbM2MMEMY5My/tHjc3fKZ7vDS9aZou9lzaQG:pZwvzqA1bb7qr5JZ8ODDS4B9l
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T17445C03333518662D4E549F18A3FBEEAB17A5A294B4425FB578C5CC61C31AE2B333943
sha3_384: 4aa6843e86836a02f34f0e21e40159535a0d18c094bb492613327f8c0615c1b6a81ea83b10c433c6c3661fca29784be1
ep_bytes: 558bec6aff68f0184700685cb4460064
timestamp: 2020-08-23 08:44:41


Version Info:

CompanyName: daPlayer
FileDescription: daPlayer
FileVersion: 4.3.1.1
InternalName: daPlayer
LegalCopyright: Copyright (C) 2009-2018 daPlayer.  All rights reserved.
OriginalFilename: daPlayer
ProductName: daPlayer
ProductVersion: 4.3.1.1
Translation: 0x0409 0x04e4

Strictor.248692 also known as:

BkavW32.AIDetect.malware1
LionicTrojan.Win32.Staser.4!c
Elasticmalicious (high confidence)
DrWebTrojan.Siggen9.22670
MicroWorld-eScanGen:Variant.Strictor.248692
FireEyeGeneric.mg.a6e0a70d2a9cd18a
McAfeeGenericRXLT-RE!A6E0A70D2A9C
CylanceUnsafe
SangforTrojan.Win32.Save.a
K7AntiVirusTrojan ( 00588d921 )
AlibabaTrojan:Win32/Staser.d24f56ab
K7GWTrojan ( 00588d921 )
Cybereasonmalicious.d2a9cd
BitDefenderThetaGen:NN.ZexaCO.34212.lv0@aaNXjrji
CyrenW32/Ekstak.Y.gen!Eldorado
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/Kryptik.HHUB
TrendMicro-HouseCallTROJ_GEN.R002C0PB522
Paloaltogeneric.ml
ClamAVWin.Packed.Zusy-9645281-0
KasperskyHEUR:Trojan.Win32.Staser.vho
BitDefenderGen:Variant.Strictor.248692
SUPERAntiSpywareTrojan.Agent/Gen-Kryptik
AvastWin32:AdwareX-gen [Adw]
TencentWin32.Trojan.Staser.Lpbc
Ad-AwareGen:Variant.Strictor.248692
SophosMal/Generic-R + Troj/Agent-BEQV
TrendMicroTROJ_GEN.R002C0PB522
McAfee-GW-EditionBehavesLike.Win32.Sality.tc
EmsisoftGen:Variant.Strictor.248692 (B)
IkarusPUA.ICLoader
GDataGen:Variant.Strictor.248692
AviraHEUR/AGEN.1244176
MAXmalware (ai score=85)
Antiy-AVLTrojan/Win32.Staser
GridinsoftRansom.Win32.Miner.sa
ArcabitTrojan.Strictor.D3CB74
ZoneAlarmHEUR:Trojan.Win32.Staser.vho
MicrosoftBrowserModifier:Win32/Adrozek
CynetMalicious (score: 100)
AhnLab-V3PUP/Win32.ICLoader.R349031
VBA32BScope.Trojan.Staser
ALYacGen:Variant.Strictor.248692
MalwarebytesAdware.DownloadAssistant
APEXMalicious
RisingTrojan.Kryptik!1.AA23 (CLOUD)
SentinelOneStatic AI – Malicious PE
MaxSecureTrojan.Malware.121218.susgen
FortinetW32/CoinMiner.GYQC!tr
AVGWin32:AdwareX-gen [Adw]
PandaTrj/Genetic.gen
CrowdStrikewin/malicious_confidence_90% (W)

How to remove Strictor.248692?

Strictor.248692 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment