Ransom • Trojan

Trojan-Ransom.CYRLocker (A) malicious file

The Trojan-Ransom.CYRLocker (A) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Trojan-Ransom.CYRLocker (A) virus can do?

Executable code extraction
Network activity detected but not expressed in API logs
Anomalous binary characteristics

How to determine Trojan-Ransom.CYRLocker (A)?


File Info:
crc32: 16BFDD71
md5: 295837a0503871bdccb8b78f5f54f5a0
name: 295837A0503871BDCCB8B78F5F54F5A0.mlw
sha1: 2ac1c6fa7968a46625e0677421bacc17ee53f1f1
sha256: ceb98050a8c8bdd8e41ed01366a2edec7ec3c1f1b701242ca887993b337653af
sha512: 99e1e5321deff2d320e4254f3529421eccc644c52156f5cf4465d403d088ef6542709478cc7fc8b9034d625adac3a44098ca3dbb65aa13355118009e2d93f744
ssdeep: 768:pzZZTHgb5z5SNGGJ15mZQGHhwPdbsFpYBCVgQVGVRHZTHg9N:nIkCjmFOpY62H
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:
Translation: 0x0409 0x04b0
ProductVersion: 1.00
InternalName: CYR-Locker
FileVersion: 1.00
OriginalFilename: CYR-Locker.exe
ProductName: CYR-Locker

Trojan-Ransom.CYRLocker (A) also known as:

ALYac	Trojan.Ransom.ScreenLocker
Cylance	Unsafe
Zillya	Trojan.GenericKD.Win32.129344
CrowdStrike	win/malicious_confidence_100% (W)
Alibaba	Trojan:Win32/Filecoder.ee6343b6
Cybereason	malicious.a7968a
APEX	Malicious
Avast	Win32:Malware-gen
Kaspersky	UDS:DangerousObject.Multi.Generic
NANO-Antivirus	Trojan.Win32.FileCoder.emiykz
ViRobot	Trojan.Win32.Ransom.77824.F
Tencent	Win32.Trojan.Generic.Hrfk
Sophos	Mal/Generic-S
VIPRE	Trojan.Win32.Generic!BT
TrendMicro	Ransom_CRYPCYR.A
McAfee-GW-Edition	BehavesLike.Win32.Vilsel.lm
Emsisoft	Trojan-Ransom.CYRLocker (A)
SentinelOne	Static AI – Suspicious PE
Webroot	W32.Trojan.Gen
Antiy-AVL	Trojan/Generic.ASMalwS.1FCECB0
Microsoft	Trojan:Win32/Occamy.CCE
TACHYON	Trojan/W32.VB-LockScreen.77824
AhnLab-V3	Trojan/Win32.Ransom.C2442882
McAfee	Artemis!295837A05038
MAX	malware (ai score=100)
Panda	Trj/GdSda.A
TrendMicro-HouseCall	Ransom_CRYPCYR.A
Ikarus	Trojan.Filecoder
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	Ransom.A!tr
AVG	Win32:Malware-gen
Paloalto	generic.ml

How to remove Trojan-Ransom.CYRLocker (A)?

Trojan-Ransom.CYRLocker (A) removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X