Malware

Should I remove “Win32.Grenam.V”?

Malware Removal

The Win32.Grenam.V is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Win32.Grenam.V virus can do?

  • Creates RWX memory
  • Reads data out of its own binary image
  • Checks for the presence of known windows from debuggers and forensic tools
  • Creates or sets a registry key to a long series of bytes, possibly to store a binary or malware config
  • Installs itself for autorun at Windows startup
  • Creates a hidden or system file
  • Network activity detected but not expressed in API logs
  • Creates a copy of itself

How to determine Win32.Grenam.V?



File Info:

crc32: 42F06F08
md5: 6570dc96e7bcd1a6198dfffd941b72ee
name: NEW ORDER 9876545678.exe
sha1: d0303317d1bcae2d9c3d8a8bb870c1b35b3ebce2
sha256: 21c9724029e1b659d1b038844e6c76054d65bbd93fbd416bfe31a5449e835845
sha512: 4e6a3890e3248c211565dd7462cd1eff1e7406661eebdf0d0f9cd7987a62496ac64c1d318c4682fec38af65dc27265a8791448f16d9e85e71584aa472d55f680
ssdeep: 12288:dwCBtLC+EptUpQ9SeSChq3YvxFBSSRMT8PTp4ihozEzpppppppppppppppppppp1:RNzCtUpQ9WWPBSSRMTEpXNR
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

Translation: 0x0000 0x04b0
LegalCopyright: Copyright xa9 2012 - 2019
Assembly Version: 0.0.0.0
InternalName: NEW ORDER 9876545678.exe
FileVersion: 4.5.7.9
CompanyName: 6e(M~8Xjf*5HD4k^
Comments: 9Te+k7*N^J8aL2g#dE
ProductName: Aq4%6/tBQz9$8^eKXw
ProductVersion: 4.5.7.9
FileDescription: Aq4%6/tBQz9$8^eKXw
OriginalFilename: NEW ORDER 9876545678.exe

Win32.Grenam.V also known as:

BkavW32.ZAccessAPM.Worm
MicroWorld-eScanWin32.Grenam.V
FireEyeGeneric.mg.6570dc96e7bcd1a6
CAT-QuickHealW32.Grenam.A13
ALYacWin32.Grenam.V
VIPREVirus.Win32.Pintu.a (v)
SangforMalware
K7AntiVirusVirus ( 0040f9341 )
BitDefenderWin32.Grenam.V
K7GWVirus ( 0040f9341 )
Cybereasonmalicious.6e7bcd
BaiduWin32.Worm.AutoRun.bu
F-ProtW32/Autorun.ZF
SymantecW32.Tapin
TotalDefenseWin32/Pintu.A
APEXMalicious
Paloaltogeneric.ml
ClamAVWin.Virus.Tainp-1
KasperskyVirus.Win32.Renamer.j
AlibabaVirus:Win32/Renamer.cd3a1de0
NANO-AntivirusVirus.Win32.Renamer.lxyhd
RisingMalware.Heuristic!ET#83% (RDMK:cmRtazrpj7P7yiR7UUEXXirUNGO6)
Ad-AwareWin32.Grenam.V
ComodoTrojWare.Win32.Spy.E@4pfq97
F-SecureHeuristic.HEUR/AGEN.1112086
DrWebTrojan.DownLoad4.10434
ZillyaWorm.AutoRun.Win32.118715
TrendMicroWORM_RENAMER.SMA
FortinetW32/AutoRun.SOT!tr
SophosW32/Renamer-M
SentinelOneDFI – Suspicious PE
CyrenW32/Autorun.YQXC-6672
JiangminTrojan/Genome.axcm
WebrootW32.Rogue.Gen
AviraHEUR/AGEN.1112086
eGambitUnsafe.AI_Score_91%
MAXmalware (ai score=85)
Antiy-AVLVirus/Win32.Renamer.j
ArcabitWin32.Grenam.V
ViRobotWin32.Renamer.B
ZoneAlarmVirus.Win32.Renamer.j
MicrosoftVirus:Win32/Grenam.B
CynetMalicious (score: 100)
AhnLab-V3Worm/Win32.Renamer.R177157
McAfeeW32/Tainp.a
VBA32Virus.Renamer.13219
MalwarebytesSpyware.PasswordStealer
ZonerTrojan.Win32.66255
ESET-NOD32Win32/AutoRun.Delf.LV
TrendMicro-HouseCallWORM_RENAMER.SMA
TencentVirus.Win32.Renamer.b
IkarusVirus.Win32.Pintu
MaxSecureVirus.W32.Renamer.J
GDataWin32.Grenam.V
BitDefenderThetaAI:Packer.AA0AA6D218
AVGWin32:AutoRun-CWJ [Trj]
PandaW32/Renamer.I
Qihoo-360HEUR/QVM05.1.3641.Malware.Gen

How to remove Win32.Grenam.V?

Win32.Grenam.V removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment