Malware

How to remove “Win32/RA-based.NAB”?

Malware Removal

The Win32/RA-based.NAB is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Win32/RA-based.NAB virus can do?

  • Reads data out of its own binary image
  • Network activity detected but not expressed in API logs

How to determine Win32/RA-based.NAB?



File Info:

crc32: E4C9E44E
md5: 3f6a5840b309e4b82fe50564d8a9452a
name: 3F6A5840B309E4B82FE50564D8A9452A.mlw
sha1: 19c96e5a5f26f85e0536aed65af4f3147efb5484
sha256: 3a8551e235b6167df723e8d05bf6f15fd4a9bf5e5429112713bbad72ce45648f
sha512: be51429cbf510765c85e6ed60e9f5990233bdf1f2a002e3ea09a4db29845d98e3d1a1d143e9c9dd6c1ab0c47d101ec23b879b654679282f9a1e6445f25e505ac
ssdeep: 12288:YaWzgMg7v3qnCiMErQohh0F4CCJ8lnyC8C+:PaHMv6CorjqnyC8C+
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright: xa9 Microsoft Corporation. All rights reserved.
FileVersion: 1.0.3.3
FileDescription: Host Process for Windows Services
Translation: 0x0409 0x04b0

Win32/RA-based.NAB also known as:

BkavW32.AIDetect.malware2
K7AntiVirusTrojan ( 700000111 )
ALYacTrojan.GenericKD.47393318
CylanceUnsafe
ZillyaTrojan.RAbased.Win32.149
BitDefenderTrojan.GenericKD.47393318
K7GWTrojan ( 700000111 )
Cybereasonmalicious.a5f26f
ESET-NOD32Win32/RA-based.NAB
APEXMalicious
CynetMalicious (score: 100)
AlibabaTrojan:Win32/based.db8f17f2
MicroWorld-eScanTrojan.GenericKD.47393318
Ad-AwareTrojan.GenericKD.47393318
SophosMal/Generic-S
McAfee-GW-EditionBehavesLike.Win32.BadFile.jh
FireEyeGeneric.mg.3f6a5840b309e4b8
EmsisoftTrojan.GenericKD.47393318 (B)
AviraTR/Crypt.FKM.Gen
MicrosoftTrojan:Win32/Wacatac.B!ml
GDataTrojan.GenericKD.47393318
McAfeeArtemis!3F6A5840B309
MAXmalware (ai score=82)
TrendMicro-HouseCallTROJ_GEN.R002H0AKD21
YandexTrojan.HiddenProc.Gen.UJ
IkarusTrojan.Win32.RA
FortinetW32/RA_based.NAB!tr
Paloaltogeneric.ml

How to remove Win32/RA-based.NAB?

Win32/RA-based.NAB removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment