Trojan-Ransom.Win32.Stop.fe malicious file

The Trojan-Ransom.Win32.Stop.fe file is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

What Trojan-Ransom.Win32.Stop.fe virus can do?

• Executable code extraction
• Attempts to connect to a dead IP:Port (1 unique times)
• Creates RWX memory
• Reads data out of its own binary image
• Attempts to repeatedly call a single API many times in order to delay analysis time
• Installs itself for autorun at Windows startup
• Attempts to modify proxy settings
• Creates a copy of itself
• Anomalous binary characteristics
• Uses suspicious command line tools or Windows utilities

How to determine Trojan-Ransom.Win32.Stop.fe?

General:
Operating System: Windows 7 / 8 / 8.1 / 10
Virus Name: GenericR-RGH!C25EF68E3F18


File Info:
Name: starticon8.exe
Size: 1282560
Type: PE32 executable (GUI) Intel 80386, for MS Windows
MD5: c25ef68e3f182a258cc00ccc01c985e2
SHA1: 498e57ef53f9a5deec7a08edfe8dd881e70a68d2
SH256: 1b359f5e2446a66b1e44143fabdfe23de8c237e93eeae0e973646dd205a645a7
 
Version Info:
 [No Data] 

Trojan-Ransom.Win32.Stop.fe also known as:

ALYac	Trojan.Ransom.Stop
APEX	Malicious
AVG	Win32:CoinminerX-gen [Trj]
Acronis	suspicious
Ad-Aware	Trojan.GenericKD.32667992
AegisLab	Trojan.Win32.Stop.j!c
AhnLab-V3	Trojan/Win32.MalPe.R296857
Alibaba	Trojan:Win32/Stop.5e859e19
Antiy-AVL	Trojan/Win32.Wacatac
Arcabit	Trojan.Generic.D1F27958
Avast	Win32:CoinminerX-gen [Trj]
Avira	TR/AD.InstaBot.cou
BitDefender	Trojan.GenericKD.32667992
BitDefenderTheta	Gen:Trojan.Heur2.PPBB.3.0.oz0@bKMJPpnaVd
Bkav	W32.WisampleNWAH.Trojan
CAT-QuickHeal	Trojan.Multi
CrowdStrike	win/malicious_confidence_100% (W)
Cybereason	malicious.e3f182
Cylance	Unsafe
Cyren	W32/Trojan.UJRE-7480
DrWeb	Trojan.PWS.Siggen2.37718
ESET-NOD32	a variant of Win32/Kryptik.GXUX
Emsisoft	Trojan.Crypt (A)
Endgame	malicious (high confidence)
F-Secure	Trojan.TR/AD.InstaBot.cou
FireEye	Generic.mg.c25ef68e3f182a25
Fortinet	W32/GenKryptik.DWRG!tr
GData	Win32.Trojan-Ransom.STOP.R7VRLW
Ikarus	Trojan.Win32.Crypt
Invincea	heuristic
Jiangmin	TrojanDownloader.Bandit.atg
K7AntiVirus	Riskware ( 0040eff71 )
K7GW	Riskware ( 0040eff71 )
Kaspersky	Trojan-Ransom.Win32.Stop.fe
MAX	malware (ai score=100)
Malwarebytes	Trojan.MalPack.GS
McAfee	GenericR-RGH!C25EF68E3F18
McAfee-GW-Edition	GenericR-RGH!C25EF68E3F18
MicroWorld-eScan	Trojan.GenericKD.32667992
Microsoft	Trojan:Win32/CryptInject.VDS!MTB
NANO-Antivirus	Trojan.Win32.Stop.gfpkck
Paloalto	generic.ml
Panda	Trj/GdSda.A
Qihoo-360	Win32/Trojan.Ransom.1f9
Rising	Trojan.Kryptik!1.BE23 (CLASSIC)
SentinelOne	DFI – Malicious PE
Sophos	Mal/GandCrab-G
Symantec	Downloader
Trapmine	malicious.moderate.ml.score
TrendMicro	Ransom_Stop.R002C0WK219
TrendMicro-HouseCall	Trojan.Win32.SMOKELOAD.SMD2.hp
VBA32	BScope.Trojan.Chapak
VIPRE	Trojan.Win32.Generic!BT
Webroot	W32.Trojan.Gen
Yandex	Trojan.Stop!
Zillya	Trojan.Stop.Win32.31
ZoneAlarm	Trojan-Ransom.Win32.Stop.fe

How to remove Trojan-Ransom.Win32.Stop.fe?

• Download and install GridinSoft Anti-Malware.
• Open GridinSoft Anti-Malware and perform a “Standard scan“.
• “Move to quarantine” all items.
• Open “Tools” tab – Press “Reset Browser Settings“.
• Select proper browser and options – Click “Reset”.
• Restart your computer.