Malware

About “Win32/Packed.VMProtect.I suspicious” infection

Malware Removal

The Win32/Packed.VMProtect.I suspicious is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Win32/Packed.VMProtect.I suspicious virus can do?

  • The binary likely contains encrypted or compressed data.
  • The executable is likely packed with VMProtect

How to determine Win32/Packed.VMProtect.I suspicious?



File Info:

crc32: 73E1B819
md5: 06a0efaa7b235514d76485af8a866765
name: 06A0EFAA7B235514D76485AF8A866765.mlw
sha1: cca809521676991c9e390a27e0edb56f1999d8da
sha256: b748bd713a1e83a79a9438ddec0059a83928b1fc810e3e45dd8cff84dcdc2994
sha512: 4fd2abe34043e555ce947817075076c7ab890e158bddce8566dc011a00a6983122bda5121fe1284a85a66addffb555e7f2b202b196107f943f5b98700ff0e146
ssdeep: 49152:FMxl0udAtySJGH2bZ2+zj4Tzbp1Q72efjyrh6VY5G3XaptnReLhg3aF:Fmkt8Onvs/hef2rhKYTJReOqF
type: PE32 executable (console) Intel 80386, for MS Windows


Version Info:

0: [No Data]

Win32/Packed.VMProtect.I suspicious also known as:

BkavW32.AIDetect.malware2
Elasticmalicious (high confidence)
CylanceUnsafe
CrowdStrikewin/malicious_confidence_60% (D)
Cybereasonmalicious.a7b235
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/Packed.VMProtect.I suspicious
APEXMalicious
SophosGeneric ML PUA (PUA)
McAfee-GW-EditionBehavesLike.Win32.Generic.vc
FireEyeGeneric.mg.06a0efaa7b235514
SentinelOneStatic AI – Malicious PE
eGambitUnsafe.AI_Score_99%
MicrosoftTrojan:Win32/Sabsik.FL.B!ml
AhnLab-V3Trojan/Win.Generic.R414442
RisingMalware.Heuristic!ET#99% (RDMK:cmRtazqoBCH1w9su+mJWIMnUqeZp)
MaxSecureTrojan.Malware.300983.susgen

How to remove Win32/Packed.VMProtect.I suspicious?

Win32/Packed.VMProtect.I suspicious removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment