Malware

Ursu.247220 removal

Malware Removal

The Ursu.247220 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Ursu.247220 virus can do?

  • CAPE extracted potentially suspicious content
  • Authenticode signature is invalid
  • Binary compilation timestomping detected

How to determine Ursu.247220?



File Info:

name: C22F86EECBAE69643990.mlw
path: /opt/CAPEv2/storage/binaries/c8bbb27e45f2d147c4fd081fa232534f059b06bd907bbe13592b799988544750
crc32: B2934C39
md5: c22f86eecbae69643990f65d8c04b371
sha1: 032db73589cf5006f612b2b238a6ca36e8e11a92
sha256: c8bbb27e45f2d147c4fd081fa232534f059b06bd907bbe13592b799988544750
sha512: e89f2a721330602cf29b1c1d359c8ed514cefcb0cf670b703650f8a096b89529b8b131277f2b4babab8e7df9dcf70de93366f14b0546613ddb826f413ab9949d
ssdeep: 3072:Ryev0+ftNoZZJ2VTT40lA/E7ziQ4J3zX17OqrhkAhY9UjY2R+:RtvZftNoZZJ2VIjo2A9aP
type: PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
tlsh: T1C024ED036B449B05CD7C353A92FB182C63E1F6CB1771995FCF467AA71CC62A698CC246
sha3_384: e8060309a09b1759bc9aad3aadc1725f560efde9475e8d8800a75f3e65fec4539fac6375e7c4d76d45e27b5ba5341bce
ep_bytes: ff250020400000000000000000000000
timestamp: 2073-02-19 22:02:53


Version Info:

Translation: 0x0000 0x04b0
Comments: 
CompanyName: 
FileDescription: runpe
FileVersion: 1.0.0.0
InternalName: runpe.dll
LegalCopyright: Copyright ©  2022
LegalTrademarks: 
OriginalFilename: runpe.dll
ProductName: runpe
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

Ursu.247220 also known as:

BkavW32.AIDetectMalware.CS
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Ursu.247220
FireEyeGen:Variant.Ursu.247220
SkyhighArtemis
McAfeeArtemis!C22F86EECBAE
VIPREGen:Variant.Ursu.247220
SangforTrojan.Win32.Ursu.Vyga
CrowdStrikewin/malicious_confidence_100% (W)
AlibabaTrojan:Win32/Generic.4954e13f
K7GWTrojan ( 005690671 )
K7AntiVirusTrojan ( 005690671 )
SymantecTrojan.Gen.MBT
APEXMalicious
KasperskyHEUR:Trojan.Win32.Generic
BitDefenderGen:Variant.Ursu.247220
AvastWin32:TrojanX-gen [Trj]
EmsisoftGen:Variant.Ursu.247220 (B)
ZillyaTrojan.Generic.Win32.1868741
TrendMicroTrojan.MSIL.WACATAC.USBLD524
SophosMal/Generic-S
WebrootW32.Malware.Gen
Antiy-AVLTrojan/Win32.Wacatac
KingsoftWin32.Trojan.Generic.a
MicrosoftTrojan:Win32/Acll
ArcabitTrojan.Ursu.D3C5B4
ZoneAlarmHEUR:Trojan.Win32.Generic
GDataGen:Variant.Ursu.247220
VaristW32/ABRisk.RRYV-4966
ALYacGen:Variant.Ursu.247220
MAXmalware (ai score=83)
Cylanceunsafe
PandaTrj/GdSda.A
TrendMicro-HouseCallTrojan.MSIL.WACATAC.USBLD524
MaxSecureTrojan.Malware.7164915.susgen
FortinetW32/PossibleThreat
AVGWin32:TrojanX-gen [Trj]
DeepInstinctMALICIOUS
alibabacloudTrojan:Win/Ursu

How to remove Ursu.247220?

Ursu.247220 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment