Malware

Ursu.652557 removal guide

Malware Removal

The Ursu.652557 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Ursu.652557 virus can do?

  • The binary likely contains encrypted or compressed data.
  • Network activity detected but not expressed in API logs

How to determine Ursu.652557?



File Info:

crc32: 444F2D3A
md5: f742dd1d2ce4deed30f30bc916a5272b
name: pdf.exe
sha1: 0137c5467c04cbc1424ae325dbfe8fc8a9e58d87
sha256: 6cb4a4c213039d10a3dbe97b563f945acde0292302a8f678e33ea0d269a90eb1
sha512: 2d9f5774559fdb6a5cf7d8e396c84f298c80c53a40cb62df348773bc5037368374efe20a1bf0a9a6bc3bd0e01bbf36bf4d0be313ed4c6f9db4bf687cf6d0c154
ssdeep: 6144:867ox29v9+NyQMuc3byVwcbyKUeAaRrMMMMMMMMMMMMMMMMMMB+MMMMMMMMMMMM:867U2B92TMSQKnAQMMMMMMMMMMMMMMM
type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows


Version Info:

Translation: 0x0000 0x04b0
LegalCopyright: Copyright xa9  2020
Assembly Version: 1.0.0.0
InternalName: pdf text.exe
FileVersion: 1.0.0.0
ProductName: pdf text
ProductVersion: 1.0.0.0
FileDescription: pdf text
OriginalFilename: pdf text.exe

Ursu.652557 also known as:

MicroWorld-eScanGen:Variant.Ursu.652557
FireEyeGeneric.mg.f742dd1d2ce4deed
McAfeeArtemis!F742DD1D2CE4
BitDefenderGen:Variant.Ursu.652557
Cybereasonmalicious.67c04c
BitDefenderThetaGen:NN.ZemsilF.34106.oq0@aGm!tYl
SymantecTrojan.Gen.2
APEXMalicious
AvastWin32:CrypterX-gen [Trj]
ClamAVWin.Packed.Msilperseus-7012268-0
GDataGen:Variant.Ursu.652557
KasperskyHEUR:Trojan.Win32.Generic
Ad-AwareGen:Variant.Ursu.652557
EmsisoftGen:Variant.Ursu.652557 (B)
F-SecureHeuristic.HEUR/AGEN.1123965
Invinceaheuristic
McAfee-GW-EditionArtemis!Trojan
Trapminemalicious.moderate.ml.score
SophosTroj/MSIL-HIM
AviraHEUR/AGEN.1123965
MAXmalware (ai score=82)
Endgamemalicious (high confidence)
ArcabitTrojan.Ursu.D9F50D
ZoneAlarmHEUR:Trojan.Win32.Generic
MicrosoftBackdoor:MSIL/Bladabindi
AhnLab-V3Trojan/Win32.RL_Generic.C3529426
ESET-NOD32a variant of MSIL/Kryptik.FAS
SentinelOneDFI – Malicious PE
eGambitUnsafe.AI_Score_99%
FortinetMSIL/Kryptik.NZF!tr
AVGWin32:CrypterX-gen [Trj]
CrowdStrikewin/malicious_confidence_100% (D)

How to remove Ursu.652557?

Ursu.652557 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment