Strictor.280535 removal instruction

The Strictor.280535 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Strictor.280535 virus can do?

CAPE extracted potentially suspicious content
The binary likely contains encrypted or compressed data.
Authenticode signature is invalid
Binary compilation timestomping detected

How to determine Strictor.280535?


File Info:
name: 05B32219BA28AB13A072.mlw
path: /opt/CAPEv2/storage/binaries/83540f97470f788a836b7e0eeb923c095b76b4d4c447e62e8d06f48ad5646686
crc32: 7A1F010F
md5: 05b32219ba28ab13a072418345ff8fcf
sha1: 8fba98bc56b189a2fbd081fbf8813deffcf564ca
sha256: 83540f97470f788a836b7e0eeb923c095b76b4d4c447e62e8d06f48ad5646686
sha512: d305fddbde5e39742a554e01abdb94ea3a66673aa2f9323cc2a31a05e5ec4cd6ecc96586c7bf9b1a2e8c4841f41c92e3e30c172b5e5e79d4a76dfae85dca079a
ssdeep: 12288:BG2iNKpaN08GWwzoLlObPcVdmHb5GBXnaxNYN2MW6uwgDGlkU:BG10pa9zesObPcVA7Q1QVU
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T193B41297B139F7D2C63AE7F514563A8493FE8F024757EA790E88A8C611127401A33BE7
sha3_384: 7789a0746f9d24446d49c98946f2f6ea50c70740dc90ec3a0ac74c3ecd635182015ea55af63a02319d6a22b709374293
ep_bytes: ff250020400000000000
timestamp: 2050-11-25 04:56:18

Version Info:
Translation: 0x0000 0x04b0
Comments: 
CompanyName: Microsoft
FileDescription: UI Generator
FileVersion: 1.0.0.0
InternalName: pDas.exe
LegalCopyright: Copyright © Microsoft 2023
LegalTrademarks: 
OriginalFilename: pDas.exe
ProductName: UI Generator
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

Strictor.280535 also known as:

Elastic	malicious (high confidence)
MicroWorld-eScan	Gen:Variant.Strictor.280535
FireEye	Generic.mg.05b32219ba28ab13
ALYac	Gen:Variant.Strictor.280535
Malwarebytes	Trojan.MalPack.PNG.Generic
VIPRE	Gen:Variant.Strictor.280535
Sangfor	Suspicious.Win32.Save.a
CrowdStrike	win/malicious_confidence_100% (W)
VirIT	Trojan.Win32.MSIL_Heur.A
Cyren	W32/MSIL_Kryptik.IUH.gen!Eldorado
Symantec	Scr.Malcode!gdn34
ESET-NOD32	a variant of MSIL/GenKryptik.GNWT
APEX	Malicious
Cynet	Malicious (score: 100)
Kaspersky	UDS:Trojan.MSIL.Crypt.gen
BitDefender	Gen:Variant.Strictor.280535
Avast	PWSX-gen [Trj]
DrWeb	Trojan.PackedNET.2355
Trapmine	malicious.moderate.ml.score
SentinelOne	Static AI – Suspicious PE
MAX	malware (ai score=88)
Arcabit	Trojan.Strictor.D447D7
ZoneAlarm	UDS:Trojan.MSIL.Crypt.gen
GData	Gen:Variant.Strictor.280535
Google	Detected
TrendMicro-HouseCall	TROJ_GEN.R06CH0CIF23
Rising	Malware.Obfus/MSIL@AI.82 (RDM.MSIL2:q5T8K6+vePzYxC0rJeaC2A)
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	MSIL/Kryptik.HDZY!tr
AVG	PWSX-gen [Trj]
Cybereason	malicious.c56b18
DeepInstinct	MALICIOUS

How to remove Strictor.280535?

Strictor.280535 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X