Ransom Trojan

Trojan-Ransom.Win32.GenericCryptor.cys (file analysis)

Malware Removal

The Trojan-Ransom.Win32.GenericCryptor.cys is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan-Ransom.Win32.GenericCryptor.cys virus can do?

  • Authenticode signature is invalid
  • Anomalous binary characteristics

How to determine Trojan-Ransom.Win32.GenericCryptor.cys?



File Info:

name: 641907D7527614281E2B.mlw
path: /opt/CAPEv2/storage/binaries/30d541ae2ab80d7008f769573d7824e52f61314835f498343f695f51b3051e21
crc32: 2C772134
md5: 641907d7527614281e2bfa6619d00ea5
sha1: d6887e014d6c387c17e573fa870b952e606ed789
sha256: 30d541ae2ab80d7008f769573d7824e52f61314835f498343f695f51b3051e21
sha512: c149ebd76817d2df775d80629c857ea0264fc106c75b5753084dd6e84423359c9dbde3df4755ee19c0137b45c738b38dedff3d38fbf9d901b3ff3b898546f599
ssdeep: 3072:6fyTjI+pNgDANnNbGHXEk1HssX28nc3LF2:cyTjIaaENnNbG3EOMsm8nc3Lw
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1B0D38D363BD09031D2B234B0864AA7767FF9B9325926AB4A5F915D309F302A1D72D34F
sha3_384: 9295ada51446057d628a484a999aed7582566f98001c20eadcba0417f062c2e41466814861628cf330e313bb40f131b6
ep_bytes: e81da10000e979feffff8bff558bec51
timestamp: 2013-10-21 11:44:58


Version Info:

0: [No Data]

Trojan-Ransom.Win32.GenericCryptor.cys also known as:

BkavW32.AIDetect.malware1
DrWebTrojan.AVKill.33553
FireEyeGeneric.mg.641907d752761428
MalwarebytesMalware.AI.4058332055
ZillyaTrojan.Urelas.Win32.1046
Cybereasonmalicious.752761
CyrenW32/Damaged_File.E.gen!Eldorado
SymantecTrojan.Gen.MBT
KasperskyTrojan-Ransom.Win32.GenericCryptor.cys
NANO-AntivirusTrojan.Win32.AVKill.cqkwqf
McAfee-GW-EditionBehavesLike.Win32.Generic.ch
SentinelOneStatic AI – Suspicious PE
JiangminBackdoor/Plite.ae
Antiy-AVLTrojan/Generic.ASMalwFH.4460A07
MicrosoftTrojan:Win32/Woreflint.A!cl
CynetMalicious (score: 100)
McAfeeGenericRXAA-FA!641907D75276
APEXMalicious
RisingMalware.Heuristic!ET#97% (RDMK:cmRtazrWWh1gOlnN8CY1XkUcaZsp)
FortinetPossibleThreat.RF
CrowdStrikewin/malicious_confidence_70% (W)

How to remove Trojan-Ransom.Win32.GenericCryptor.cys?

Trojan-Ransom.Win32.GenericCryptor.cys removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment