What is "HackTool.Win32.FlyStudio.ainm"?

The HackTool.Win32.FlyStudio.ainm is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What HackTool.Win32.FlyStudio.ainm virus can do?

Executable code extraction
Creates RWX memory
A process attempted to delay the analysis task.
Reads data out of its own binary image
Unconventionial binary language: Chinese (Simplified)
Unconventionial language used in binary resources: Chinese (Simplified)
The binary likely contains encrypted or compressed data.
Detects Sandboxie through the presence of a library
Tries to suspend Cuckoo threads to prevent logging of malicious activity
Tries to unhook or modify Windows functions monitored by Cuckoo
Attempts to modify proxy settings

Related domains:

z.whorecord.xyz

zhuyan.diyidongli.com

a.tomx.xyz

dlzl.qiniudn.com

dlzlz.qiniudn.com

dlzlx.qiniudn.com

diyidongli.com

How to determine HackTool.Win32.FlyStudio.ainm?


File Info:
crc32: B1B4ED73
md5: 0eb55e9b684cdd07ec8d0dbe843bd827
name: csdn_v5.5.exe
sha1: e7fbe05bdbcde873801e74e21a068076b9be5369
sha256: 02698de1298e3bdb5d147e1b4791d0930b67fc03e7df8f6af774abbe4c4030bb
sha512: bd3764e14dbb2843260f9fe9133b62f6b8e065e1df9f9552967b4bd8850c368a65c8a3d86465fc778c6c52ae83920a989643060f9d9e5ec6a34cbdb146337445
ssdeep: 49152:lwcmxrNotvPHlIDYZ1Vrl4/ANg1Q0dnEsUAiatakzcJWApBZTJ:ycmxrWtv/lIcZLl4oe/dnzUPaMLJWAp
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:
LegalCopyright: BYxff1ax52a8x529bx8f6fx4ef6
FileVersion: 1.0.1.0
CompanyName: BYxff1ax52a8x529bx8f6fx4ef6
Comments: CSDNx4e0bx8f7dx7cbex7075
ProductName: CSDNx4e0bx8f7dx7cbex7075
ProductVersion: 1.0.1.0
FileDescription: CSDNx4e0bx8f7dx7cbex7075
Translation: 0x0804 0x04b0

HackTool.Win32.FlyStudio.ainm also known as:

Bkav	HW32.Packed.
FireEye	Generic.mg.0eb55e9b684cdd07
CAT-QuickHeal	HackTool.FlyStudio
McAfee	Artemis!0EB55E9B684C
Cylance	Unsafe
VIPRE	Trojan.Win32.Generic!BT
AegisLab	Hacktool.Win32.FlyStudio.3!c
Sangfor	Malware
K7AntiVirus	Unwanted-Program ( 004eb1401 )
K7GW	Unwanted-Program ( 004eb1401 )
Cybereason	malicious.bdbcde
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win32/FlyStudio.Packed.AE potentially unwanted
Baidu	Win32.Packed.VMProtect.a
Avast	Win32:Malware-gen
Kaspersky	HackTool.Win32.FlyStudio.ainm
Alibaba	HackTool:Win32/FlyStudio.d8729383
NANO-Antivirus	Trojan.Win32.Black.dhuwho
Rising	Trojan.Bitrep!8.F596 (CLOUD)
Endgame	malicious (high confidence)
Comodo	TrojWare.Win32.Agent.OSCF@5rs7jr
F-Secure	Trojan.TR/Black.Gen2
DrWeb	Trojan.Siggen8.12984
Zillya	Tool.FlyStudio.Win32.1995
Invincea	heuristic
McAfee-GW-Edition	BehavesLike.Win32.PWSOnlineGames.vc
SentinelOne	DFI – Malicious PE
Trapmine	malicious.high.ml.score
Sophos	Mal/VMProtBad-A
APEX	Malicious
Jiangmin	HackTool.FlyStudio.fau
Webroot	W32.Malware.Gen
Avira	TR/Black.Gen2
AhnLab-V3	Malware/Win32.Generic.C2526164
ZoneAlarm	HackTool.Win32.FlyStudio.ainm
Microsoft	Trojan:Win32/Occamy.C
VBA32	TScope.Trojan.Delf
MAX	malware (ai score=100)
Tencent	Win32.Hacktool.Flystudio.Jmj
Ikarus	Trojan.Black
eGambit	Generic.Malware
Fortinet	W32/FlyStudio_Packed.A
AVG	Win32:Malware-gen
CrowdStrike	win/malicious_confidence_100% (W)

How to remove HackTool.Win32.FlyStudio.ainm?

HackTool.Win32.FlyStudio.ainm removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

What is “HackTool.Win32.FlyStudio.ainm”?