Crack

Application.HackTool.161 (file analysis)

Malware Removal

The Application.HackTool.161 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Application.HackTool.161 virus can do?

  • Dynamic (imported) function loading detected
  • CAPE extracted potentially suspicious content
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • Network activity detected but not expressed in API logs

How to determine Application.HackTool.161?



File Info:

name: 7F3F4E8CC48B78C9D783.mlw
path: /opt/CAPEv2/storage/binaries/89151457129d148409c7e200fc599346bf4a5b06b2ca8fe26b752cab41a52a76
crc32: C42B1705
md5: 7f3f4e8cc48b78c9d783ff508af36263
sha1: 20f8c1e6023c4fbe3e7477da1955472f090af99f
sha256: 89151457129d148409c7e200fc599346bf4a5b06b2ca8fe26b752cab41a52a76
sha512: f45df976a5b115b884ba979ddb9acddbcb3c92ddf214f59e65594ffafea25b94b6a3bbceba6457605681604776eb72941ddee8ad47b659339a3175c35684d522
ssdeep: 196608:T9E1MEXj8gL5pvmRbUGchbrqfNr7kDIXSzC7NOlL:uCE4gL5ERbNcNGVr7pKW6
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T18976128019A90F66F5BF03F8D40BA1448FA56068546EFA5DEDC239CB4C8AFC55E1F48B
sha3_384: f7f25e998df71e9efd6a293938001d73f5f39a6684b10f13ccf1eec3628ca74bcf756390afbe32e793d4b4393eb1bfb0
ep_bytes: ff250020400000000000000000000000
timestamp: 2019-05-17 13:07:55


Version Info:

Translation: 0x0000 0x04b0
Comments: 
CompanyName: 
FileDescription: Nonsense Diamond
FileVersion: 1.0.0.0
InternalName: Nonsense Diamond.exe
LegalCopyright: Copyright Nonsense Diamond ©  2018
LegalTrademarks: 
OriginalFilename: Nonsense Diamond.exe
ProductName: Nonsense Diamond
ProductVersion: 1.0.0.0
Assembly Version: 1.2.0.0

Application.HackTool.161 also known as:

FireEyeGeneric.mg.7f3f4e8cc48b78c9
ALYacGen:Variant.Application.HackTool.161
CylanceUnsafe
Cybereasonmalicious.cc48b7
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of MSIL/DllInject.ACM potentially unsafe
APEXMalicious
Paloaltogeneric.ml
CynetMalicious (score: 100)
BitDefenderGen:Variant.Application.HackTool.161
MicroWorld-eScanGen:Variant.Application.HackTool.161
AvastWin32:TrojanX-gen [Trj]
Ad-AwareGen:Variant.Application.HackTool.161
EmsisoftGen:Variant.Application.HackTool.161 (B)
ComodoMalware@#2lopwr2llyjsu
McAfee-GW-EditionGenericRXKY-NB!7F3F4E8CC48B
SophosGeneric PUA CA (PUA)
SentinelOneStatic AI – Suspicious PE
GDataGen:Variant.Application.HackTool.161
WebrootW32.Malware.Gen
MAXmalware (ai score=100)
Antiy-AVLTrojan/Generic.ASMalwS.2B94D4C
MicrosoftTrojan:Win32/Occamy.C89
AhnLab-V3Malware/Win32.RL_Generic.R269805
McAfeeGenericRXKY-NB!7F3F4E8CC48B
MalwarebytesTrojan.MalPack.MSIL
TrendMicro-HouseCallTROJ_GEN.R002H06KK21
IkarusTrojan.Inject
BitDefenderThetaGen:NN.ZemsilF.34294.@p0@aO9r2Og
AVGWin32:TrojanX-gen [Trj]
CrowdStrikewin/malicious_confidence_60% (W)
MaxSecureTrojan.Malware.74210657.susgen

How to remove Application.HackTool.161?

Application.HackTool.161 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment