Crack

HackTool.Win32.WinCred.b information

Malware Removal

The HackTool.Win32.WinCred.b is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What HackTool.Win32.WinCred.b virus can do?

  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • Dynamic (imported) function loading detected
  • Unconventionial binary language: Chinese (Simplified)
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX
  • Authenticode signature is invalid

How to determine HackTool.Win32.WinCred.b?



File Info:

name: C3164AEE36716D5F62BD.mlw
path: /opt/CAPEv2/storage/binaries/96148b2efff55e7b9ae27af24a87533e5ba774e4a992bf4c12edbc8a5041f110
crc32: 0A1C4CF1
md5: c3164aee36716d5f62bd47341f794759
sha1: dca45c8e2d7015b9ab1be34570c0ee6db7238768
sha256: 96148b2efff55e7b9ae27af24a87533e5ba774e4a992bf4c12edbc8a5041f110
sha512: 4346e971f87d81bd2dd3ec657abec6626c05cd05a3d502fce8b7f6a913bee163ea7cc4bf0012dc42fe2f280f8ceaa7a9571665ba8a3c73270cd133b9f818a54f
ssdeep: 196608:/XTmcomtV90WkjktDEVVMZc4IlYisj5exDWFrNmjF6AlB7ZSerFWfHad86MiOf62:qNQgjGsVQAVm58kByTtSjid8fiOS2
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T161E63352B989050EC21173B1541BB47B8BA97E75CDA73136D8B23CB24F3B5D02AE9B07
sha3_384: 2f57cc34f1c8475a58a262d452f8a2ddecdd1195fb17feaadd4478aff34e687c72a00c89a0c049d642fc2b9d0f2710fd
ep_bytes: 60be002028018dbe00f017ff57eb0b90
timestamp: 2020-02-27 11:36:11


Version Info:

FileVersion: V1.02.5
Comments: 作者→小鱼儿yr
FileDescription: Aut2Exe
ProductVersion: 1.0
LegalCopyright: ©2018-2019 yrxitong.com 版权所有
Translation: 0x0804 0x04b0

HackTool.Win32.WinCred.b also known as:

BkavW32.AIDetect.malware1
Elasticmalicious (moderate confidence)
MicroWorld-eScanTrojan.GenericKD.41507003
FireEyeGeneric.mg.c3164aee36716d5f
McAfeeArtemis!C3164AEE3671
CylanceUnsafe
SangforHacktool.Win32.WinCred.b
K7AntiVirusRiskware ( 0040eff71 )
AlibabaHackTool:Win32/WinCred.6075bcd2
K7GWRiskware ( 0040eff71 )
Cybereasonmalicious.e36716
SymantecML.Attribute.HighConfidence
APEXMalicious
KasperskyHackTool.Win32.WinCred.b
BitDefenderTrojan.GenericKD.41507003
NANO-AntivirusTrojan.Win32.WinCred.hijefp
AvastWin32:PUP-gen [PUP]
Ad-AwareTrojan.GenericKD.41507003
SophosGeneric PUA NM (PUA)
DrWebTool.Wpakill.4
ZillyaTool.WinCred.Win32.312
TrendMicroHackTool.Win32.KMS.AD
McAfee-GW-EditionBehavesLike.Win32.Generic.vc
Trapminemalicious.high.ml.score
EmsisoftTrojan.GenericKD.41507003 (B)
IkarusTrojan.Win32.ASProtect
GDataApplication.WpaKill.G (2x)
Antiy-AVLHackTool/Win32.Activator
KingsoftWin32.HackTool.WinCred.b.(kcloud)
ArcabitApplication.WpaKill.G
ZoneAlarmHackTool.Win32.WinCred.b
MicrosoftRansom:Win32/StopCrypt!ml
AhnLab-V3Malware/Win.Generic.R437329
ALYacApplication.WpaKill.G
MAXmalware (ai score=85)
MalwarebytesMalware.Heuristic.1003
TrendMicro-HouseCallHackTool.Win32.KMS.AD
RisingTrojan.Inject!8.103 (CLOUD)
FortinetRiskware/WinCred
AVGWin32:PUP-gen [PUP]
CrowdStrikewin/malicious_confidence_70% (W)
MaxSecureTrojan.Malware.82522765.susgen

How to remove HackTool.Win32.WinCred.b?

HackTool.Win32.WinCred.b removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment