Trojan

Trojan.Csfrsys (file analysis)

Malware Removal

The Trojan.Csfrsys is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Csfrsys virus can do?

  • Reads data out of its own binary image
  • Drops a binary and executes it
  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

How to determine Trojan.Csfrsys?



File Info:

crc32: 32F208E3
md5: 3b34b1fb150c3e1eb342c570da475f7e
name: 3B34B1FB150C3E1EB342C570DA475F7E.mlw
sha1: b0df30d40985886cb3c242d3a4e96a9c3125d2b0
sha256: 1dedea05916b5f7a24d1239ad3470b84289e5e74290498c0671ccf2444076cec
sha512: b41426d8ca9216f7cf2e4f31a3c1503699518030565a024dc1264527b9d7abdc0273d0b710678a49d6f4593ca187269e116340eb83f25bf47da59d2493c18b58
ssdeep: 196608:CnBXS3wbMU8aQNyOiJZS6NHTw8d37GvQrWERSIR1usAau0p61BRl4wxf:CnBswb0TN2JIIH1d37GIrWEYIHuslKj5
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright: Setup Engine Copyright xa9 2001 - 2004 Indigo Rose Corporation
InternalName: suf60_setup
FileVersion: 6.0.1.4
CompanyName: 
PrivateBuild: 
LegalTrademarks: Setup Factory is a trademark of Indigo Rose Corporation.
Comments: Created with Setup Factory 6.0
ProductName: Setup Factory 6.0 Runtime
SpecialBuild: 
ProductVersion: 6.0.1.4
FileDescription: Setup Application
OriginalFilename: setup.exe
Translation: 0x0409 0x04e4

Trojan.Csfrsys also known as:

LionicTrojan.Win32.Csfrsys.4!c
Elasticmalicious (high confidence)
CynetMalicious (score: 99)
ALYacTrojan.GenericKD.36386663
CylanceUnsafe
SangforRiskware.Win32.Agent.ky
Cybereasonmalicious.b150c3
SymantecTrojan.Gen.2
AvastFileRepMalware
KasperskyTrojan.Win32.Csfrsys.va
BitDefenderTrojan.GenericKD.36386663
NANO-AntivirusTrojan.Win32.Csfrsys.ezjjqr
MicroWorld-eScanTrojan.GenericKD.36386663
TencentWin32.Trojan.Csfrsys.Lkdw
Ad-AwareTrojan.GenericKD.36386663
SophosMal/Generic-S
ComodoMalware@#h7qvw7ezbhuq
BitDefenderThetaGen:NN.ZedlaF.34266.du8@aGRLfYib
VIPRETrojan.Win32.Generic!BT
McAfee-GW-EditionArtemis!Trojan
FireEyeGeneric.mg.3b34b1fb150c3e1e
EmsisoftTrojan.GenericKD.36386663 (B)
AviraTR/Csfrsys.qhuas
eGambitUnsafe.AI_Score_100%
MicrosoftTrojan:Win32/Wacatac.B!ml
ArcabitTrojan.Generic.D22B3767
GDataTrojan.GenericKD.36386663
McAfeeArtemis!3B34B1FB150C
MAXmalware (ai score=97)
VBA32Trojan.Csfrsys
PandaTrj/CI.A
IkarusTrojan.Win32.Csfrsys
FortinetW32/Csfrsys.VA!tr
AVGFileRepMalware

How to remove Trojan.Csfrsys?

Trojan.Csfrsys removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment