Ransom Trojan

How to remove “Trojan-Ransom.Win32.Locky.dma”?

Malware Removal

The Trojan-Ransom.Win32.Locky.dma is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan-Ransom.Win32.Locky.dma virus can do?

  • Executable code extraction
  • Creates RWX memory
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX

How to determine Trojan-Ransom.Win32.Locky.dma?



File Info:

crc32: 87219ECE
md5: fb8fae0450649e6d4ef6557e78568c01
name: FB8FAE0450649E6D4EF6557E78568C01.mlw
sha1: 60e359f551e41d1e25b563189aba3aef25dfca99
sha256: 8bd968eee6f1e5341c01013f13f26481aa244a52a4be2cf0f46691cab3fc7203
sha512: f660e399db818d3dc1ecc55a8055622d009a918c0a1c6f3caa778ab26cb5b9bddba4f04665dbdd2528dc38bf52707a3532d8385c3d3f2e8f6f8d6cc5fa521bca
ssdeep: 6144:WmEXgDm7oS6jWCbEpHrLc+yz8t3NOe4r1tvxRY//lIiE:Wm4Cm7oS6fElsKNt2rxiaT
type: PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed


Version Info:

0: [No Data]

Trojan-Ransom.Win32.Locky.dma also known as:

BkavW32.AIDetect.malware1
K7AntiVirusTrojan ( 004eff041 )
Elasticmalicious (high confidence)
DrWebTrojan.Encoder.3976
CynetMalicious (score: 100)
ALYacTrojan.BrsecmonE.1
CylanceUnsafe
ZillyaTrojan.Locky.Win32.2774
SangforTrojan.Win32.Save.a
CrowdStrikewin/malicious_confidence_100% (W)
AlibabaRansom:Win32/Locky.92c44291
K7GWTrojan ( 004eff041 )
Cybereasonmalicious.450649
SymantecML.Attribute.HighConfidence
ESET-NOD32Win32/Filecoder.Locky.C
APEXMalicious
AvastFileRepMalware
ClamAVWin.Ransomware.Locky-6240137-0
KasperskyTrojan-Ransom.Win32.Locky.dma
BitDefenderTrojan.BrsecmonE.1
NANO-AntivirusTrojan.Win32.Locky.ellsuy
MicroWorld-eScanTrojan.BrsecmonE.1
TencentWin32.Trojan.Raas.Auto
Ad-AwareTrojan.BrsecmonE.1
SophosMal/Generic-S
BitDefenderThetaGen:NN.ZexaF.34608.nmGfa832Qtoi
VIPRETrojan.Win32.Generic!BT
TrendMicroRansom_LOCKY.F117C8
McAfee-GW-EditionBehavesLike.Win32.Generic.dc
FireEyeGeneric.mg.fb8fae0450649e6d
EmsisoftTrojan.BrsecmonE.1 (B)
SentinelOneStatic AI – Malicious PE
AviraHEUR/AGEN.1114504
eGambitUnsafe.AI_Score_99%
KingsoftWin32.Heur.KVML200046.a.(kcloud)
MicrosoftRansom:Win32/FileCryptor
ArcabitTrojan.BrsecmonE.1
AegisLabTrojan.Win32.Locky.j!c
ZoneAlarmTrojan-Ransom.Win32.Locky.dma
GDataTrojan.BrsecmonE.1
TACHYONRansom/W32.Locky.302592.B
AhnLab-V3Trojan/Win32.Locky.C1849905
McAfeeArtemis!FB8FAE045064
MAXmalware (ai score=80)
VBA32Hoax.Locky
MalwarebytesMalware.Heuristic.1003
PandaTrj/CI.A
TrendMicro-HouseCallRansom_LOCKY.F117C8
RisingRansom.Locky!8.1CD4 (CLOUD)
YandexTrojan.Locky!Tosf6h4brvo
IkarusTrojan.Win32.Filecoder
FortinetW32/Filecoder.2287!tr.ransom
AVGFileRepMalware
Paloaltogeneric.ml
Qihoo-360Win32/Ransom.Locky.HgIASOsA

How to remove Trojan-Ransom.Win32.Locky.dma?

Trojan-Ransom.Win32.Locky.dma removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment