Ransom Trojan

How to remove “Trojan-Ransom.Win32.Crusis.cqb”?

Malware Removal

The Trojan-Ransom.Win32.Crusis.cqb is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan-Ransom.Win32.Crusis.cqb virus can do?

  • Attempts to repeatedly call a single API many times in order to delay analysis time
  • Network activity detected but not expressed in API logs

How to determine Trojan-Ransom.Win32.Crusis.cqb?



File Info:

crc32: E1E0E4D0
md5: e3fe49c3b452b227231b44405f0853d2
name: E3FE49C3B452B227231B44405F0853D2.mlw
sha1: 086216609e6999292266b4f0a96b6856a90994a5
sha256: 9d76a5f02c75c25135f79d99afd69dd0d689028e8569925680909435881f566b
sha512: 80975397459aa665b39bda81b0c227b24b542bdd98662ec5c177eb04f9a938b91182ebfe0d95215dca62e3a6e8a8b31777dec85b8f3373651e81b3c961fc171a
ssdeep: 6144:HpUq3qfCcQ4vaOu3tOVOLmu4PBNO/r79JSGY8zxiBRD5i33BA:yqaa+vaOu3tOVuqoDwBRDI3
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright: 2006-2014 (c) PassMark Software
InternalName: Rasheed
FileVersion: 6.8.3.8
CompanyName: PassMark Software
Comments: Compliant Westerly Graetz Installer
ProductName: Rasheed
ProductVersion: 6.8.3.8
FileDescription: Compliant Westerly Graetz Installer
OriginalFilename: Rasheed.exe
Translation: 0x0409 0x04b0

Trojan-Ransom.Win32.Crusis.cqb also known as:

BkavW32.AIDetect.malware2
K7AntiVirusRiskware ( 0040eff71 )
Elasticmalicious (high confidence)
DrWebTrojan.Encoder.3953
CynetMalicious (score: 99)
ALYacTrojan.Ransom.Crysis
CylanceUnsafe
ZillyaTrojan.GenericKD.Win32.132734
SangforTrojan.Win32.Save.a
AlibabaRansom:Win32/Crysis.ali1020005
K7GWRiskware ( 0040eff71 )
ESET-NOD32Win32/Filecoder.Crysis.P
APEXMalicious
AvastWin32:Malware-gen
KasperskyTrojan-Ransom.Win32.Crusis.cqb
TencentWin32.Trojan.Raas.Auto
ComodoMalware@#21bleusg1kq47
BitDefenderThetaGen:NN.ZexaF.34690.Lu0@aOr2!3fi
VIPRETrojan.Win32.Generic!BT
FireEyeGeneric.mg.e3fe49c3b452b227
AviraHEUR/AGEN.1129571
MicrosoftTrojan:Win32/Glupteba!ml
AegisLabTrojan.Win32.Generic.4!c
AhnLab-V3Malware/Win32.Generic.C2707394
Acronissuspicious
McAfeeGenericRXGL-XU!E3FE49C3B452
MAXmalware (ai score=100)
VBA32TrojanRansom.Crusis
MalwarebytesRansom.Crysis
PandaTrj/GdSda.A
RisingRansom.Crusis!8.5724 (CLOUD)
IkarusTrojan-Ransom.Crysis
FortinetW32/Filecoder_Crysis.P!tr
AVGWin32:Malware-gen
Paloaltogeneric.ml

How to remove Trojan-Ransom.Win32.Crusis.cqb?

Trojan-Ransom.Win32.Crusis.cqb removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment