Malware

Win32:ReposFxg-K [Miner] removal tips

Malware Removal

The Win32:ReposFxg-K [Miner] is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Win32:ReposFxg-K [Miner] virus can do?

  • The binary contains an unknown PE section name indicative of packing
  • The executable is compressed using UPX
  • Authenticode signature is invalid

Related domains:

wpad.local-net

How to determine Win32:ReposFxg-K [Miner]?



File Info:

name: 867BD6CAC990004EE3E8.mlw
path: /opt/CAPEv2/storage/binaries/37fc932ededacf9f32571d93a021c0ad4d11a74d79ace380c09842213610e755
crc32: CC7B3A33
md5: 867bd6cac990004ee3e8ecc973c2d406
sha1: 9a7632f276ad33ae8b9ddb6482e6ba3688a091b7
sha256: 37fc932ededacf9f32571d93a021c0ad4d11a74d79ace380c09842213610e755
sha512: 56686ca791584446e19e0c918c09b97e6eaa05a4a94136362a86e272d4fd627606d5ce0c9095954e694104fe6f369c79ddc1b795b679a9c6a5861c6d28242a81
ssdeep: 6144:yLR7tQqjoPmozkvO1oRQX8kPPS/pMvFD0Pc2Trk/IKwBw:kR76fuR4PSatQhTWIKGw
type: PE32+ executable (console) x86-64, for MS Windows
tlsh: T10EF523A2052DBD6ED2325ABB41F212C93F3D7530724B4FE72BC85C5BB26D8158B27261
sha3_384: be7097e92bad9f9bc75e7e141fdcd7e5e03b7bc6d1823f89bc865f893a7049f6b03893ed3eb2c8343da754097dbd5a55
ep_bytes: 00000000000000000000000000000000
timestamp: 2019-12-17 07:16:13


Version Info:

0: [No Data]

Win32:ReposFxg-K [Miner] also known as:

LionicRiskware.Win32.Generic.1!c
Elasticmalicious (high confidence)
SangforSuspicious.Win32.Save.a
CyrenW64/Agent.BUC.gen!Eldorado
SymantecTrojan.Gen.2
APEXMalicious
Paloaltogeneric.ml
SophosML/PE-A
ComodoMalware@#1vlpt5xmsxxn8
VIPRETrojan.Win32.Generic!BT
McAfee-GW-EditionBehavesLike.Win64.Trojan.wz
JiangminTrojan.Generic.gzwrl
Antiy-AVLTrojan/Generic.ASMalwS.3088DDC
MicrosoftTrojan:Win32/Ditertag.A
CynetMalicious (score: 100)
McAfeeArtemis!867BD6CAC990
CylanceUnsafe
SentinelOneStatic AI – Malicious PE
eGambitUnsafe.AI_Score_66%
FortinetW64/CoinMiner.BUC!tr
AVGWin32:ReposFxg-K [Miner]
Cybereasonmalicious.ac9900
AvastWin32:ReposFxg-K [Miner]
MaxSecureTrojan.Malware.103295885.susgen

How to remove Win32:ReposFxg-K [Miner]?

Win32:ReposFxg-K [Miner] removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment