Malware

About “Strictor.266241 (B)” infection

Malware Removal

The Strictor.266241 (B) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Strictor.266241 (B) virus can do?

  • Unconventionial language used in binary resources: Korean
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • Anomalous binary characteristics

Related domains:

wpad.local-net

How to determine Strictor.266241 (B)?



File Info:

name: 7DB679A04D6A29D83960.mlw
path: /opt/CAPEv2/storage/binaries/1684414514227b9f47a9e138fc89e0f346922c716914f932aa9e169623a53c0b
crc32: 590AB4CF
md5: 7db679a04d6a29d839609f7b54c248d7
sha1: 0e2da6a094d070ab8bd1ec31cc9281f18b8056e9
sha256: 1684414514227b9f47a9e138fc89e0f346922c716914f932aa9e169623a53c0b
sha512: c76b53b25f4d43aba042ad1cc7c0bd1339bf94cc8a1d8061f1bf1d703773396f4194ebe2b84db66541dbcdd7ae90e1846d1488e1147b2f4bfd8ab579477d56a9
ssdeep: 98304:7SuqAuo8K6gNLNm2tTb+4GWD6rwU8wgDSDSGMOdr1byZupCzK1nuyDtd:uu3rJ1NE2O0Z7G2GMspbyZu4O1F
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T16136336494B16A86F21F677620B8F5766A5B0D2DE9935DA3A1C03EFF316305920C8F0F
sha3_384: 2991d44964a75a754bc97a0518c598bb8155fa19be333f1fce916a7676bb78087b785caebe1108b7bcdbf1f2056294f1
ep_bytes: 6800104000e8eeffffff000000000000
timestamp: 1970-01-01 00:00:00


Version Info:

CompanyName: PLAYWITH Interactive
FileDescription: R.O.H.A.N. Eternal Vengeance
FileVersion: 1, 0, 4, 942
InternalName: RohanClient
LegalCopyright: Copyright (C) 2005
OriginalFilename: RohanClient
ProductName: Rohan
ProductVersion: 1, 0, 4, 942
Translation: 0x0409 0x04b0

Strictor.266241 (B) also known as:

BkavW32.AIDetect.malware2
LionicTrojan.Win32.Strictor.4!c
MicroWorld-eScanGen:Variant.Strictor.266241
FireEyeGeneric.mg.7db679a04d6a29d8
McAfeeGenericRXAA-FA!7DB679A04D6A
CylanceUnsafe
SymantecML.Attribute.HighConfidence
APEXMalicious
CynetMalicious (score: 70)
BitDefenderGen:Variant.Strictor.266241
AvastFileRepMalware
Ad-AwareGen:Variant.Strictor.266241
EmsisoftGen:Variant.Strictor.266241 (B)
F-SecureHeuristic.HEUR/Patched.Ren
McAfee-GW-EditionBehavesLike.Win32.Dropper.rc
SophosMal/Generic-S
SentinelOneStatic AI – Suspicious PE
GDataGen:Variant.Strictor.266241
MaxSecureTrojan.Malware.300983.susgen
AviraHEUR/Patched.Ren
MAXmalware (ai score=88)
GridinsoftRansom.Win32.Sabsik.sa
ArcabitTrojan.Strictor.D41001
MicrosoftTrojan:Win32/Sabsik.FL.B!ml
ALYacGen:Variant.Strictor.266241
VBA32Trojan.MSIL.DOTHETUK
MalwarebytesMalware.Heuristic.1003
TrendMicro-HouseCallTROJ_GEN.R002H09KQ21
RisingMalware.Heuristic!ET#96% (RDMK:cmRtazqWFI1hmDKEfODXk8j5CX8V)
IkarusTrojan.Kazy
eGambitUnsafe.AI_Score_99%
FortinetW32/PossibleThreat
AVGFileRepMalware
Cybereasonmalicious.094d07
PandaTrj/Genetic.gen

How to remove Strictor.266241 (B)?

Strictor.266241 (B) removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment