Malware

Symmi.84054 (file analysis)

Malware Removal

The Symmi.84054 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Symmi.84054 virus can do?

  • Executable code extraction
  • Creates RWX memory
  • Mimics the system’s user agent string for its own requests
  • The binary likely contains encrypted or compressed data.
  • Behavior consistent with a dropper attempting to download the next stage.
  • Exhibits behavior characteristic of Locky ransomware
  • Anomalous binary characteristics

How to determine Symmi.84054?



File Info:

crc32: 8BF20CC2
md5: bdf2a1fb95e0c31089459488b11cbba9
name: BDF2A1FB95E0C31089459488B11CBBA9.mlw
sha1: 6cc612347beb244a37d4ac005be0ececf7c01e04
sha256: 929d85e306ed9e491ec4e6c71a34d4078c205b384483c4fa236b839670fcd3a7
sha512: 862ac55578871264f8cf112f07b0e39966b9c9e84a03ba0ae55f68cf89208826c7151128c9912d8ac827f31389247111ba77dcf0a7fde1312bf2095c551301db
ssdeep: 6144:wMJhZNIuhKQ8gO6Hd4OhbznOWqb9WXALg9hP73/kquiG+4tKcO0:wunAgO6bbznOdbYXAc9F7sziG5NO0
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright: Copyright 2015 SUPERAntiSpyware
InternalName: Mission 1996
FileVersion: 4.8.62.5
CompanyName: SUPERAntiSpyware
LegalTrademarks: Copyright 2015 SUPERAntiSpyware
Comments: Soif Beams Nap Explains
ProductName: Mission 1996
Languages: English
ProductVersion: 4.8.62.5
FileDescription: Soif Beams Nap Explains
OriginalFilename: Mission 1996
Translation: 0x0409 0x04b0

Symmi.84054 also known as:

BkavW32.AIDetect.malware1
K7AntiVirusTrojan ( 0055e3ef1 )
Elasticmalicious (high confidence)
DrWebTrojan.Encoder.7129
CynetMalicious (score: 100)
ALYacGen:Variant.Symmi.84054
CylanceUnsafe
ZillyaTrojan.Scatter.Win32.46
SangforTrojan.Win32.Save.a
CrowdStrikewin/malicious_confidence_100% (W)
AlibabaTrojanSpy:Win32/Locky.cb30291f
K7GWTrojan ( 0055e3ef1 )
Cybereasonmalicious.b95e0c
CyrenW32/Trojan.XACM-7336
SymantecRansom.Cerber
ESET-NOD32Win32/Filecoder.Locky.C
APEXMalicious
AvastWin32:Malware-gen
KasperskyTrojan-Spy.Win32.Zbot.xokf
BitDefenderGen:Variant.Symmi.84054
NANO-AntivirusTrojan.Win32.Scatter.eixmlr
ViRobotTrojan.Win32.Locky.336384
SUPERAntiSpywareTrojan.Agent/Gen-Festo
MicroWorld-eScanGen:Variant.Symmi.84054
TencentMalware.Win32.Gencirc.114b20cb
Ad-AwareGen:Variant.Symmi.84054
SophosML/PE-A
ComodoMalware@#1da541hfvvta9
BitDefenderThetaAI:Packer.D28CC21421
VIPRETrojan.Win32.Generic!BT
TrendMicroRansom_LOCKY.F116KS
McAfee-GW-EditionGeneric.aus
FireEyeGeneric.mg.bdf2a1fb95e0c310
EmsisoftGen:Variant.Symmi.84054 (B)
SentinelOneStatic AI – Malicious PE
JiangminTrojanSpy.Zbot.fofy
AviraTR/Crypt.ZPACK.Gen7
eGambitUnsafe.AI_Score_99%
KingsoftWin32.Troj.GenericKD.v.(kcloud)
MicrosoftRansom:Win32/FileCryptor
AegisLabTrojan.Win32.Zbot.4!c
GDataGen:Variant.Symmi.84054
AhnLab-V3Trojan/Win32.Cerber.C1679784
Acronissuspicious
McAfeeGeneric.aus
MAXmalware (ai score=100)
VBA32Hoax.Scatter
MalwarebytesRansom.Cerber
PandaTrj/CI.A
TrendMicro-HouseCallRansom_LOCKY.F116KS
RisingRansom.Scatter!8.139C (TFE:5:GywkV4wKgTK)
YandexTrojan.Scatter!YGwdCw+sjWY
IkarusTrojan-Spy.Remcos
FortinetW32/Filecoder_Locky.C!tr
AVGWin32:Malware-gen
Paloaltogeneric.ml
Qihoo-360Win32/Trojan.Zbot.HwoC7XcA

How to remove Symmi.84054?

Symmi.84054 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment