Malware

Should I remove “Strictor.30335”?

Malware Removal

The Strictor.30335 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Strictor.30335 virus can do?

  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • Dynamic (imported) function loading detected
  • CAPE extracted potentially suspicious content
  • Unconventionial language used in binary resources: Serbian (Cyrillic)
  • The binary likely contains encrypted or compressed data.
  • .NET file is packed/obfuscated with SmartAssembly
  • Authenticode signature is invalid
  • Anomalous .NET characteristics

How to determine Strictor.30335?



File Info:

name: 1B082201F0B38A8A3BCF.mlw
path: /opt/CAPEv2/storage/binaries/e39cc5c0321f1ea2938cfb266ea7cd8cd696fd09c597f88f7e08cc3ec223eca0
crc32: A5B36404
md5: 1b082201f0b38a8a3bcf097810145d6a
sha1: 4d6d5c48dc0b725c70a9101b7f039ad9a33e3ff4
sha256: e39cc5c0321f1ea2938cfb266ea7cd8cd696fd09c597f88f7e08cc3ec223eca0
sha512: 4283fcd830aa427a0f993efb19629375828b861711e5bc5c6b431602eae570705a44668b3da3cd1e85f26b7dc9e9867888e6f1a97eacd7eb64333e4f9928e342
ssdeep: 3072:Qw11bQtq+5J9d/+597lsg6MGklYZCsbzMMV6MjaNx+0ri7Hj1m+ijBhY4j9R5Whp:Qwrbuq+5Jr/CC3klYIIoC6Mjox+
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T106043A0233E8064DF4F76B746CF62B226539BCB1D935D7AD46C0029E2E327918991B7B
sha3_384: 2033680abce5310acf09d04fe5ef6df85c95d071da2ab313ecb1300e513c1a2f598f8124832e8d967917ab0fed333711
ep_bytes: ff250020400000000000000000000000
timestamp: 2021-11-27 21:40:10


Version Info:

0: [No Data]

Strictor.30335 also known as:

Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Strictor.30335
MalwarebytesMachineLearning/Anomalous.94%
CrowdStrikewin/malicious_confidence_100% (D)
ArcabitTrojan.Strictor.D767F
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of MSIL/Kryptik_AGen.FN
APEXMalicious
CynetMalicious (score: 100)
KasperskyHEUR:Trojan-PSW.MSIL.Stealer.gen
BitDefenderGen:Variant.Strictor.30335
Ad-AwareGen:Variant.Strictor.30335
EmsisoftGen:Variant.Strictor.30335 (B)
FireEyeGeneric.mg.1b082201f0b38a8a
SophosML/PE-A
SentinelOneStatic AI – Malicious PE
MicrosoftTrojan:Win32/Sabsik.FL.B!ml
GDataGen:Variant.Strictor.30335
ALYacGen:Variant.Strictor.30335
MAXmalware (ai score=81)
MaxSecureTrojan.Malware.300983.susgen
BitDefenderThetaGen:NN.ZemsilF.34062.km0@aWvfopEH

How to remove Strictor.30335?

Strictor.30335 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment