Trojan:Win32/Fragtor.ASFA!MTB removal instruction

The Trojan:Win32/Fragtor.ASFA!MTB is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Trojan:Win32/Fragtor.ASFA!MTB virus can do?

Sample contains Overlay data
The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid

How to determine Trojan:Win32/Fragtor.ASFA!MTB?


File Info:
name: F20007ED005E4CE0BB4B.mlw
path: /opt/CAPEv2/storage/binaries/a74c3d986afe623ed3618c7dbe3efd240cbe30b6ea5ea8f7654ebc9359bad758
crc32: 4ED5E8D6
md5: f20007ed005e4ce0bb4b2b89ec55232d
sha1: 233d492bec341b4379b973ca47b6de4eea0c9b94
sha256: a74c3d986afe623ed3618c7dbe3efd240cbe30b6ea5ea8f7654ebc9359bad758
sha512: 0899bc3313cfe266f8d0e32fc02e33b82b73f1781694223f9a8d202a7ca9c29d7905105881cd8c840b7c851133d6f3613668b93e2c8beb71cffa8c1721bb2cb0
ssdeep: 768:iTGoQJ0UPq/JZ2c8sPP3lLuzZPKqY8jYEr5R5:eGmAQJP8sPP3lLuBZYvEt
type: PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
tlsh: T108E2D8997E444CE7E951173880E7D7762A7CF440C7238B62F661A7308A23BA1719B26F
sha3_384: 1986f4414b9a844fb9c6d36f0bfc427ed59ebd1ee2ed06f3697602ca67343d410fee3e13d9073c876d89579a8c90dc47
ep_bytes: 57565383ec108b5c24248b7424208b7c
timestamp: 2024-02-08 22:47:22

Version Info:
0: [No Data]

Trojan:Win32/Fragtor.ASFA!MTB also known as:

Lionic	Trojan.Win32.Generic.4!c
MicroWorld-eScan	Trojan.GenericKD.71591641
FireEye	Generic.mg.f20007ed005e4ce0
Skyhigh	BehavesLike.Win32.Injector.nm
McAfee	GenericRXWN-OS!F20007ED005E
Cylance	unsafe
Zillya	Trojan.Injector.Win32.1810111
Sangfor	Trojan.Win32.Agent.Vw9n
Alibaba	Trojan:Win32/Fragtor.d9322bc0
K7GW	Trojan ( 005b1a3c1 )
K7AntiVirus	Trojan ( 000242cc1 )
BitDefenderTheta	Gen:NN.ZedlaF.36802.c46@aiv1mom
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (moderate confidence)
ESET-NOD32	a variant of Win32/Injector.ETQB
TrendMicro-HouseCall	TROJ_GEN.R002C0DBG24
Kaspersky	HEUR:Trojan.Win32.Generic
BitDefender	Trojan.GenericKD.71591641
Avast	Win32:TrojanX-gen [Trj]
Tencent	Trojan.Win32.Agent.kbq
Emsisoft	Trojan.GenericKD.71591641 (B)
F-Secure	Trojan.TR/Agent_AGen.ncnmg
VIPRE	Trojan.GenericKD.71591641
TrendMicro	TROJ_GEN.R002C0DBG24
Sophos	Mal/Generic-S
MAX	malware (ai score=87)
Google	Detected
Avira	TR/Agent_AGen.ncnmg
Varist	W32/Agent.IHW.gen!Eldorado
Antiy-AVL	Trojan/Win32.Agent
Microsoft	Trojan:Win32/Fragtor.ASFA!MTB
Arcabit	Trojan.Generic.D44466D9
ViRobot	Trojan.Win.Z.Injector.34110.C
ZoneAlarm	HEUR:Trojan.Win32.Generic
GData	Win32.Trojan.PSE.1BXSM3T
Cynet	Malicious (score: 100)
AhnLab-V3	Trojan/Win.Generic.R634694
VBA32	BScope.TrojanDropper.Agent
ALYac	Trojan.GenericKD.71591641
Malwarebytes	Trojan.Injector
Panda	Trj/Chgt.AD
Rising	Trojan.Fragtor!8.13132 (TFE:5:oLC6fYDPKCH)
Ikarus	Trojan.Win32.Injector
MaxSecure	Trojan.Malware.121218.susgen
Fortinet	W32/Agent.DDP!tr
AVG	Win32:TrojanX-gen [Trj]
DeepInstinct	MALICIOUS

How to remove Trojan:Win32/Fragtor.ASFA!MTB?

Trojan:Win32/Fragtor.ASFA!MTB removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X