Virus

Virus.Win32.Renamer.v removal instruction

Malware Removal

The Virus.Win32.Renamer.v is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Virus.Win32.Renamer.v virus can do?

  • .NET file is packed/obfuscated with SmartAssembly
  • Authenticode signature is invalid

How to determine Virus.Win32.Renamer.v?



File Info:

name: 156F88014E0F01AF3260.mlw
path: /opt/CAPEv2/storage/binaries/d0e0e1a613e86e1381258d7f5e5fec22a5ab4283822178e410d57f46de870bc3
crc32: E37C5817
md5: 156f88014e0f01af32603980cc10bf0b
sha1: 22e7350fa860673d7a30b2120ee57fef0f96fc09
sha256: d0e0e1a613e86e1381258d7f5e5fec22a5ab4283822178e410d57f46de870bc3
sha512: 4c6ab38588f09b21a763d19ea60f822f4f1c285876789dd3ecb6cb4443b351299d28f48d2adf7129fae079363da3c6f763941afb9e623df859ea7c7704739349
ssdeep: 1536:udGx45jd4VWZ8fsMMnxAqoUrrEKWs02g9ZDFHwfdGXnNHC2VbcdIRzkGm7WFd888:Z4d4k8ffcyQam7WF2gW
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1A7C3E569A358CBB7C5AC5A79C02395F607B09C42EC49E34FBAC43CDABD727904DC1986
sha3_384: a2b4b0bf326cf9ee77fd315d97333291153dd8d46886e300297b9cc7c2bbaa29396be465f1991d173ab05403834096b7
ep_bytes: ff2500207a0000000000000000000000
timestamp: 2012-06-02 12:12:48


Version Info:

CompanyName: Adobe Systems Incorporated
FileDescription: Adobe Bootstrapper for Single Installation
FileVersion: 20.6.20034.366983
InternalName: Setup.exe
LegalCopyright: Copyright © 2020 Adobe Systems Incorporated.  All rights reserved.
OriginalFilename: Setup.exe
ProductName: Bootstrapper Small
ProductVersion: 20.6.20034.366983
Translation: 0x0409 0x04e4

Virus.Win32.Renamer.v also known as:

Elasticmalicious (moderate confidence)
DrWebTrojan.DownLoader7.50702
McAfeeDropper-FHU!156F88014E0F
MalwarebytesMalware.AI.1266398331
CrowdStrikewin/malicious_confidence_70% (D)
VirITTrojan.Win32.Generic.ALSQ
tehtrisGeneric.Malware
KasperskyVirus.Win32.Renamer.v
RisingVirus.Grenam!1.A2DD (CLASSIC)
SophosMSIL/Grenam-A
McAfee-GW-EditionDropper-FHU!156F88014E0F
IkarusTrojan-Dropper.Win32.Dorgam
AviraTR/Rogue.86654879
MicrosoftTrojan:Win32/Wacatac.B!ml
CynetMalicious (score: 99)
AhnLab-V3Win-Trojan/FCN.140610.X1385
Acronissuspicious
APEXMalicious
SentinelOneStatic AI – Suspicious PE
MaxSecureTrojan.Malware.300983.susgen
Cybereasonmalicious.fa8606

How to remove Virus.Win32.Renamer.v?

Virus.Win32.Renamer.v removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment