Worm:Win32/Fasong!pz information

The Worm:Win32/Fasong!pz is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Worm:Win32/Fasong!pz virus can do?

• Sample contains Overlay data
• The binary contains an unknown PE section name indicative of packing
• Executable file is packed/obfuscated with MPRESS
• Authenticode signature is invalid

How to determine Worm:Win32/Fasong!pz?

File Info:
name: CE22DD9A9FD39352F0D0.mlw
path: /opt/CAPEv2/storage/binaries/056be85cc0c1a74a1c672acced10060bc635123774c9a2155d153199b1255b10
crc32: 9D8737F0
md5: ce22dd9a9fd39352f0d0bfb57ec6f909
sha1: 0750ed8c723a8278e2b5f3cb1cd26cee140b630a
sha256: 056be85cc0c1a74a1c672acced10060bc635123774c9a2155d153199b1255b10
sha512: 10158ec518d6c2b10b24ee83c80422ab2f819d92d1628eb56a5be8cabc44e2f8b23e0c294f662641d0eebeb29304f817a4427b8226602cded063b4e43e22edf6
ssdeep: 1536:R6nQq8EO7tLzbbI2Ajv8eX2ZzVbHvPTiBCBiBzBJpDabHXu:NVk21ZZ24A9zpDaTu
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1FF935C57FD81CC32D31194B88E1ED42CD5EB3AF63A272492B7EF5D8ACF293806909156
sha3_384: 5c38a25bd7643a588959c7256d19a4cae1cbd8b67a08ed4fa8a83b9885105f70fa388172e826e329fab3a43e3481b852
ep_bytes: 
timestamp: 1992-06-19 22:22:17

Version Info:
0: [No Data]

Worm:Win32/Fasong!pz also known as:

How to remove Worm:Win32/Fasong!pz?

• Download and install GridinSoft Anti-Malware.
• Open GridinSoft Anti-Malware and perform a “Standard scan“.
• “Move to quarantine” all items.
• Open “Tools” tab – Press “Reset Browser Settings“.
• Select proper browser and options – Click “Reset”.
• Restart your computer.