Crack

Should I remove “HackTool:Win32/CobaltStrike!pz”?

Malware Removal

The HackTool:Win32/CobaltStrike!pz is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What HackTool:Win32/CobaltStrike!pz virus can do?

  • Sample contains Overlay data
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid

How to determine HackTool:Win32/CobaltStrike!pz?



File Info:

name: 6FD0CA1E0D01AC04A0C7.mlw
path: /opt/CAPEv2/storage/binaries/022f55286dd47830160b34d1b9cb6f303c05eb5f723ccf8413fee323cb5edd6e
crc32: EF97E4B0
md5: 6fd0ca1e0d01ac04a0c7e6b21463fdb8
sha1: 1ab3936d79a8233b1c9ae7b10b59d069803c761f
sha256: 022f55286dd47830160b34d1b9cb6f303c05eb5f723ccf8413fee323cb5edd6e
sha512: d4e444e6989ed30cc00060d878fc3526ec56cab71b118bb17d4a7dbd63693f860eacf1e4fa02cf9473c2394486ddf60b93e8d3f69e36ee37e94ab28234dc109d
ssdeep: 12288:wqBF6oVTk26Gpx7GfzWd/sAnxvWbNBUEgPZyR6FNrcszDE32KFOAoA0ObPcxEZ5T:vBF6727z9fxvWbwv0R6FNp62GlpZZ5T
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T14DF4F195CEAB54F4D70B6130946B9B2F5A2217090F38EDDBC3D80E86D767EF1103296A
sha3_384: 4fb051a662904bbefd64e7fe03e3bfe9cf465b1c3c1b523dd7ca504891503b183ebe58ca801a751a2afe8347469e8c2a
ep_bytes: 52424f6145686a43485156724e487a72
timestamp: 1970-01-01 00:00:00


Version Info:

0: [No Data]

HackTool:Win32/CobaltStrike!pz also known as:

BkavW32.AIDetectMalware
FireEyeGeneric.mg.6fd0ca1e0d01ac04
SkyhighBehavesLike.Win32.Generic.bh
McAfeeGenericRXNR-AT!6FD0CA1E0D01
MalwarebytesGeneric.Malware.AI.DDS
SangforTrojan.Win32.Save.a
SymantecPacked.Generic.551
APEXMalicious
CynetMalicious (score: 100)
SUPERAntiSpywareTrojan.Agent/Gen-Kryptik
DrWebTrojan.PWS.Banker1.30278
SophosTroj/Miner-ABH
IkarusTrojan.Win64.CoinMiner
VaristW32/S-8f4e9221!Eldorado
Antiy-AVLTrojan/Win32.AGeneric
XcitiumTrojWare.Win32.TrojanDownloader.Banload.RES@8hfp75
MicrosoftHackTool:Win32/CobaltStrike!pz
GDataWin32.Trojan.Agent.H46NH3
GoogleDetected
AhnLab-V3Trojan/Win32.Banload.C3470781
Acronissuspicious
VBA32TrojanPSW.Banker
RisingTrojan.Generic@AI.100 (RDML:l9JJmu3pYYKRumJ44gf4bg)
SentinelOneStatic AI – Malicious PE
FortinetW32/Agent.7267!tr
CrowdStrikewin/malicious_confidence_100% (D)

How to remove HackTool:Win32/CobaltStrike!pz?

HackTool:Win32/CobaltStrike!pz removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment