Worm:Win32/Mofksys.A information

Malware Removal

The Worm:Win32/Mofksys.A is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware - Review 2020

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
6-day free trial available.

What Worm:Win32/Mofksys.A virus can do?

  • Executable code extraction
  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

Related domains:

z.whorecord.xyz
a.tomx.xyz

How to determine Worm:Win32/Mofksys.A?


File Info:

crc32: 1074631B
md5: e20d21bf001e7638ed16a8f4d2c5097d
name: E20D21BF001E7638ED16A8F4D2C5097D.mlw
sha1: ab06e5bdae1cb464c98da244eed416863f19be39
sha256: 852affe78e9c518c4cd5c2afd27493b98d240ca1e6b29da62bf1978e35190780
sha512: 3d40d8395d4aaf3ecd2394486252911ee7fba47a9804c7d82de4feb706ed85d4311fe143cfa337c440362ac697a788ac3615070b980a1dad6e1a3b551f370b85
ssdeep: 3072:vDEPeJlYW1ea8HKHSRUN3jjXs9Y+MiMVB/w68PEAjAfIrAvGPZz6sPJBIiFe/Gcr:vSAl1IK1aY+MiMVBSeoW
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:

Translation: 0x0409 0x04b0
ProductVersion: 1.00
InternalName: X
FileVersion: 1.00
OriginalFilename: X.exe
ProductName: Explorer

Worm:Win32/Mofksys.A also known as:

BkavW32.AIDetectVM.malware1
Elasticmalicious (high confidence)
MicroWorld-eScanTrojan.GenericKD.32232754
FireEyeGeneric.mg.e20d21bf001e7638
CAT-QuickHealTrojan.Mofksys.A
ALYacTrojan.GenericKD.32232754
CylanceUnsafe
VIPRETrojan.Win32.Swisyn.aegn (v)
SangforMalware
K7AntiVirusTrojan-Downloader ( 000e966d1 )
BitDefenderTrojan.GenericKD.32232754
K7GWTrojan-Downloader ( 000e966d1 )
Cybereasonmalicious.f001e7
BitDefenderThetaAI:Packer.B83ADEB720
CyrenW32/VB.AD.gen!Eldorado
SymantecW32.Gosys
ESET-NOD32a variant of Win32/VB.SZJ
BaiduWin32.Trojan.VB.kc
APEXMalicious
AvastWin32:VB-OJQ [Wrm]
ClamAVWin.Virus.Sality-6825973-0
KasperskyWorm.Win32.WBNA.avp
RisingTrojan.QOT!1.6519 (CLASSIC)
Ad-AwareTrojan.GenericKD.32232754
EmsisoftTrojan.GenericKD.32232754 (B)
ComodoTrojWare.Win32.VB.OSKB@4pc2ok
F-SecureTrojan.TR/Dropper.Gen
DrWebTrojan.VbCrypt.250
ZillyaWorm.WBNA.Win32.22983
TrendMicroWORM_MOFKSYS.SM01
McAfee-GW-EditionBehavesLike.Win32.Swisyn.dh
SophosML/PE-A + W32/Mofksys-B
IkarusTrojan.Win32.VB
JiangminWorm/WBNA.dwec
MaxSecureTrojan.Malware.300983.susgen
AviraTR/Dropper.Gen
MAXmalware (ai score=80)
Antiy-AVLWorm/Win32.WBNA
MicrosoftWorm:Win32/Mofksys.A
ArcabitTrojan.Generic.D1EBD532
AhnLab-V3Trojan/Win32.Swisyn.R1452
ZoneAlarmWorm.Win32.WBNA.avp
GDataTrojan.GenericKD.32232754
CynetMalicious (score: 100)
TotalDefenseWin32/Mofksys.C
McAfeeW32/Swisyn.ag
VBA32MAS.Trojan.VB.01047
MalwarebytesGeneric.Trojan.Stealer.DDS
PandaGeneric Malware
TrendMicro-HouseCallWORM_MOFKSYS.SM01
TencentMalware.Win32.Gencirc.10b8b446
YandexTrojan.GenAsa!av8QaE0/ORk
SentinelOneStatic AI – Malicious PE
eGambitUnsafe.AI_Score_94%
FortinetW32/Generic.AC.C2B!tr
AVGWin32:VB-OJQ [Wrm]
Paloaltogeneric.ml
CrowdStrikewin/malicious_confidence_100% (D)
Qihoo-360HEUR/QVM03.0.0A87.Malware.Gen

How to remove Worm:Win32/Mofksys.A?

Worm:Win32/Mofksys.A removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

Leave a Comment