PUA

Generic PUA HI (PUA) (file analysis)

Malware Removal

The Generic PUA HI (PUA) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Generic PUA HI (PUA) virus can do?

  • Repeatedly searches for a not-found process, may want to run with startbrowser=1 option
  • Drops a binary and executes it
  • The binary likely contains encrypted or compressed data.
  • Sniffs keystrokes
  • Anomalous binary characteristics

How to determine Generic PUA HI (PUA)?



File Info:

crc32: 724682D5
md5: 5fa3ede64d4ccf99b1ead6a4e4b32de2
name: Runestone-Keeper.EXE
sha1: 78219db133cea33f81d28fe3e3ab1aee59d9009f
sha256: 59bb5da1a2235228bc49d98909be2aee478f238a540ebdda24718f32dfadbff5
sha512: d0346d79a0e3746aa113f19afeac5864f982bb747d95ffb435707fce4d8bbe4bd4ba6a6f1daa239e8df033f32de254d91c00f17eb5c98e28ed46a6200b6d23b2
ssdeep: 98304:3mvl/A6EscFvuvu0fuKOEzQMqJb42NiHcRkyYkY:845scMh9QMqVJipyY
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

0: [No Data]

Generic PUA HI (PUA) also known as:

McAfeeArtemis!5FA3EDE64D4C
MalwarebytesCheatTool.CETTrainer
VIPRETrojan.Win32.Generic!BT
K7GWUnwanted-Program ( 004ba1a41 )
K7AntiVirusUnwanted-Program ( 004ba1a41 )
F-ProtW32/CheatEngine.B.gen!Eldorado
SymantecTrojan.Gen.SMH
ESET-NOD32a variant of Win32/HackTool.CheatEngine.AF potentially unsafe
AvastWin32:Malware-gen
AegisLabTroj.Gen!c
ZillyaTool.CheatEngine.Win32.1467
Invinceatrojan.win32.swrort.a
McAfee-GW-EditionBehavesLike.Win32.PUP.wc
SophosGeneric PUA HI (PUA)
CyrenW32/CheatEngine.B.gen!Eldorado
JiangminTrojanDropper.Injector.aqkx
Antiy-AVLTrojan[Packed]/Win32.PolyCrypt
GDataWin32.Riskware.Hacktool.D
AVwareTrojan.Win32.Generic!BT
RisingMalware.Heuristic!ET-1IAjWcDHkfJ (cloud)
YandexHackTool.CheatEngine!h2lP7QG9eRI
FortinetW32/Generic.AC.17F472!tr
PandaTrj/CI.A
CrowdStrikemalicious_confidence_100% (D)

How to remove Generic PUA HI (PUA)?

Generic PUA HI (PUA) removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment