Trojan-Ransom.Win32.Blocker.gdfj malicious file

Malware Removal

The Trojan-Ransom.Win32.Blocker.gdfj is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware - Review 2020

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
6-day free trial available.

What Trojan-Ransom.Win32.Blocker.gdfj virus can do?

  • Executable code extraction
  • Unconventionial language used in binary resources: Spanish (Modern)
  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

Related domains:

z.whorecord.xyz
a.tomx.xyz

How to determine Trojan-Ransom.Win32.Blocker.gdfj?


File Info:

crc32: 2DE91A6C
md5: 26b4ba66396e541925f6fc3debaf4a08
name: 26B4BA66396E541925F6FC3DEBAF4A08.mlw
sha1: efc9168ab8e69b1897a24bd0b593038d0ed87221
sha256: 003049e3178cf1aba039bb84fc02809f037b6c572358025b2fa2864ec0a376fc
sha512: 8e96c3138404e2f708b493020997f17277354990a0359573bf7e0859a0698715c097ab76f5db417664c44ab6ddd48815f55e52c49e7618ca810bbdded6198c55
ssdeep: 768:J1eaxYFP4ESj/M22hHyG4fhEafx3bX/ZDahPmMFAKDfZvcOeQNQFDFUbf8krBlb:LxYwd3bx+pm0AKDYQ448wlbrf
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:

Translation: 0x0c0a 0x04b0
InternalName: DEFINITIVO
FileVersion: 1.00
CompanyName: .
ProductName: abcd.exe
ProductVersion: 1.00
OriginalFilename: DEFINITIVO.exe

Trojan-Ransom.Win32.Blocker.gdfj also known as:

Elasticmalicious (high confidence)
MicroWorld-eScanGen:Trojan.Heur.VP2.em0@aG!ZTCV
FireEyeGeneric.mg.26b4ba66396e5419
McAfeeArtemis!26B4BA66396E
CylanceUnsafe
VIPRETrojan.Win32.VB
AegisLabTrojan.Win32.Blocker.j!c
SangforTrojan.Win32.Save.a
K7AntiVirusRiskware ( 0040eff71 )
BitDefenderGen:Trojan.Heur.VP2.em0@aG!ZTCV
K7GWRiskware ( 0040eff71 )
Cybereasonmalicious.6396e5
BitDefenderThetaAI:Packer.262B1FA71F
CyrenW32/VB.BZ.gen!Eldorado
SymantecML.Attribute.HighConfidence
TrendMicro-HouseCallRansom_Blocker.R002C0GB921
AvastWin32:Malware-gen
KasperskyTrojan-Ransom.Win32.Blocker.gdfj
AlibabaRansom:Win32/Blocker.106bbef9
NANO-AntivirusTrojan.Win32.VB.djoliq
RisingRansom.Blocker!8.12A (CLOUD)
Ad-AwareGen:Trojan.Heur.VP2.em0@aG!ZTCV
SophosMal/Generic-S
F-SecureTrojan.TR/Dropper.Gen
ZillyaTrojan.Blocker.Win32.27321
TrendMicroRansom_Blocker.R002C0GB921
McAfee-GW-EditionBehavesLike.Win32.Trojan.km
EmsisoftGen:Trojan.Heur.VP2.em0@aG!ZTCV (B)
IkarusTrojan.Dropper
JiangminTrojan.Blocker.giu
AviraTR/Dropper.Gen
MAXmalware (ai score=87)
Antiy-AVLTrojan[Ransom]/Win32.Blocker
KingsoftWin32.Troj.Undef.(kcloud)
MicrosoftTrojan:Win32/Ymacco.AA00
ArcabitTrojan.Heur.VP2.E6C66E
ZoneAlarmTrojan-Ransom.Win32.Blocker.gdfj
GDataGen:Trojan.Heur.VP2.em0@aG!ZTCV
CynetMalicious (score: 100)
ALYacGen:Trojan.Heur.VP2.em0@aG!ZTCV
VBA32TScope.Trojan.VB
MalwarebytesGeneric.Malware/Suspicious
PandaTrj/Genetic.gen
APEXMalicious
TencentWin32.Trojan.Blocker.Hsiu
YandexTrojan.GenAsa!KO8y39CK24c
SentinelOneStatic AI – Suspicious PE
FortinetW32/VBKrypt.C!tr
AVGWin32:Malware-gen
Paloaltogeneric.ml
CrowdStrikewin/malicious_confidence_100% (W)
Qihoo-360HEUR/QVM03.0.Malware.Gen

How to remove Trojan-Ransom.Win32.Blocker.gdfj?

Trojan-Ransom.Win32.Blocker.gdfj removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

Leave a Comment