Ransom Trojan

Trojan-Ransom.Win32.Gimemo.bbze removal

Malware Removal

The Trojan-Ransom.Win32.Gimemo.bbze is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan-Ransom.Win32.Gimemo.bbze virus can do?

  • Creates RWX memory
  • Unconventionial language used in binary resources: Russian
  • Installs itself for autorun at Windows startup
  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

Related domains:

z.whorecord.xyz
a.tomx.xyz

How to determine Trojan-Ransom.Win32.Gimemo.bbze?



File Info:

crc32: 63A94EA3
md5: efc711b3bc8db7b4324d1eda39352587
name: EFC711B3BC8DB7B4324D1EDA39352587.mlw
sha1: debe665ee39bcdf0ba25901abd80b01daf10cfc9
sha256: 9ecc5e6441e69297cd4f8bf5ad080623649af4c2306bfca337f80d7600007fbf
sha512: e9efcc1fde6e995099ed4bdb5ce94b74ad1e7faae7cd3e4ba19c8ebbe0abdd720f926f6f4b1f68bc672394e84fa5c9458b6e7f5c25b9e614108ca536f3cf73ff
ssdeep: 24576:Vxsuf6xWDAUKzldDvYknXwI8nodCzcpADEMNIuKLTt9:3/kTDQkh8noszcyGTt
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

0: [No Data]

Trojan-Ransom.Win32.Gimemo.bbze also known as:

BkavW32.AIDetect.malware2
ZillyaTrojan.Gimemo.Win32.6134
SangforTrojan.Win32.Gimemo.buxin
CyrenW32/A-1f87b5d9!Eldorado
SymantecML.Attribute.HighConfidence
APEXMalicious
AvastWin32:Malware-gen
KasperskyTrojan-Ransom.Win32.Gimemo.bbze
NANO-AntivirusTrojan.Win32.Gimemo.dglfvr
ComodoMalware@#2z2nnvg7iqvl2
BitDefenderThetaGen:NN.ZelphiF.34690.qHW@a8QCRvhQ
VIPRETrojan.Win32.Generic!BT
McAfee-GW-EditionBehavesLike.Win32.Dropper.th
SentinelOneStatic AI – Suspicious PE
MicrosoftTrojan:Win32/Wacatac.B!ml
AegisLabTrojan.Win32.Gimemo.j!c
McAfeeArtemis!EFC711B3BC8D
PandaTrj/CI.A
RisingTrojan.Win32.Generic.14AF913D (C64:YzY0Ou7+SnDwFkKl)
YandexTrojan.Gimemo!PTXwN7epTyk
IkarusTrojan.VkHost
FortinetW32/Gimemo.BBZE!tr
AVGWin32:Malware-gen

How to remove Trojan-Ransom.Win32.Gimemo.bbze?

Trojan-Ransom.Win32.Gimemo.bbze removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment