Malware

What is “Ursu.823109”?

Malware Removal

The Ursu.823109 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Ursu.823109 virus can do?

  • Unconventionial binary language: Russian
  • Unconventionial language used in binary resources: Russian
  • The binary likely contains encrypted or compressed data.
  • The executable is likely packed with VMProtect
  • Network activity detected but not expressed in API logs

How to determine Ursu.823109?



File Info:

crc32: 4E2B85C3
md5: f83320de0ec28a6c6de7ef2d066ba463
name: F83320DE0EC28A6C6DE7EF2D066BA463.mlw
sha1: 4004d74b8be7f2ed865811a45fa80a25a169b3fc
sha256: 2ce9511f903ba0b36ab01fcbbe972834f0b5d949e4426b9eb26af6f8905a4a9b
sha512: 0996dc92995d83643abb0f3eaf45fd4b3c84ff34e52126bd2b9640e7d78f07cba212694a9e0fec77e64babe043b2e6236eabc9f566a4f30cf17eecf0c540920e
ssdeep: 24576:rvAjZAhaq8ypjs63rAkVbCMkyaHS3qSx0nwS:r9Qypjs63MkxbkyaHS3qS0P
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright: 
InternalName: 
FileVersion: 1.0.0.18
CompanyName: Grave Man's Inc.
PrivateBuild: 
LegalTrademarks: 
Comments: 
ProductName: 
ProductVersion: 1.0.0.0
FileDescription: 
OriginalFilename: 
Translation: 0x0419 0x04e3

Ursu.823109 also known as:

K7AntiVirusTrojan ( 7000001c1 )
LionicTrojan.Win32.Generic.4!c
CynetMalicious (score: 99)
ALYacGen:Variant.Ursu.823109
CylanceUnsafe
ZillyaTrojan.Packed.Win32.125827
K7GWTrojan ( 7000001c1 )
Cybereasonmalicious.e0ec28
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/Packed.VMProtect.ABO
APEXMalicious
AvastWin32:Malware-gen
BitDefenderGen:Variant.Ursu.823109
MicroWorld-eScanGen:Variant.Ursu.823109
TencentWin32.Trojan.Gen.Ecjr
Ad-AwareGen:Variant.Ursu.823109
SophosMal/Generic-R + Mal/VMProtBad-A
ComodoMalware@#1z0xwr6x01cto
BitDefenderThetaGen:NN.ZexaF.34170.dL0@a4Zjr@pc
McAfee-GW-EditionBehavesLike.Win32.Dropper.tc
FireEyeGeneric.mg.f83320de0ec28a6c
EmsisoftGen:Variant.Ursu.823109 (B)
SentinelOneStatic AI – Malicious PE
AviraTR/Black.Gen2
eGambitUnsafe.AI_Score_58%
MicrosoftTrojan:Win32/Wacatac.B!ml
GDataGen:Variant.Ursu.823109
McAfeeArtemis!F83320DE0EC2
RisingTrojan.Generic@ML.99 (RDML:uANjl44rnsLxdOW+PXzNag)
YandexTrojan.VMProtect!RPH1Ha0F3Zs
IkarusTrojan.Win32.VMProtect
FortinetW32/VMProtBad.A!tr
AVGWin32:Malware-gen
Paloaltogeneric.ml

How to remove Ursu.823109?

Ursu.823109 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment