Malware

Hiloti.11 removal tips

Malware Removal

The Hiloti.11 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Hiloti.11 virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • HTTPS urls from behavior.
  • Reads data out of its own binary image
  • CAPE extracted potentially suspicious content
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • CAPE detected the shellcode patterns malware family
  • Attempts to modify proxy settings
  • Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine Hiloti.11?



File Info:

name: C88D31857223B276D3F5.mlw
path: /opt/CAPEv2/storage/binaries/a40fc24ebd47d8bb22557e6f03bf28ba40b2b84cc0c06fdd3e2169df95bac47d
crc32: B29AFC97
md5: c88d31857223b276d3f5d1d54fae3429
sha1: a7b43acf1a9ca7fe8430b0f9d3620de2a330a609
sha256: a40fc24ebd47d8bb22557e6f03bf28ba40b2b84cc0c06fdd3e2169df95bac47d
sha512: 2167682ae05591fef09e6f56122a45561a4e96c327c3fd5c410fab60a75fb674eaa5c4c0239103404ae5302e0d9ee1cb40259248f614d7d9500a40b37ca6401d
ssdeep: 1536:ZcnODjO24WiIAwqrW8tH+CpR/fWNQ7V3LHPzXPg7rJuml/nnF3Ei/zmMvl0MhlpY:ZLDjOhrI0qy+O/ft7NXA0ml/nVpzDvlw
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T110A3E022FCA04C11E88EA17A9D6E4716E33F1964A373AFD7538346DA7CB53460ED2D09
sha3_384: 4256e1db1cb39574a0d85a83f2dc1311904ad8f14d6f247b7d03e7d9be4f53f5c2be2a525ab832473ea190d7e257eaf9
ep_bytes: 5589e583ec0856e80705000039bdf1ff
timestamp: 2010-09-03 20:00:34


Version Info:

CompanyName: FileZilla Project
ProductName: FileZilla
FileDescription: SFTP module for FileZilla based on PuTTY's psftp component
InternalName: FZSFTP
OriginalFilename: FZSFTP
FileVersion: Unidentified build
ProductVersion: Unidentified build
LegalCopyright: Copyright © 2004-2008 Tim Kosse,   1997-2008 Simon Tatham.
PrivateBuild: Unidentified build
Translation: 0x0809 0x04b0

Hiloti.11 also known as:

BkavW32.AIDetectMalware
LionicTrojan.Win32.Generic.4!c
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Hiloti.11
ClamAVWin.Trojan.Hiloti-9885
FireEyeGeneric.mg.c88d31857223b276
SkyhighBehavesLike.Win32.Swrort.nc
McAfeeHiloti.gen.t
Cylanceunsafe
ZillyaTrojan.Cimag.Win32.1284
SangforTrojan.Win32.Save.a
AlibabaTrojan:Win32/Cimag.74a52db2
Cybereasonmalicious.f1a9ca
BitDefenderThetaGen:NN.ZexaF.36680.fq0@aK6oXMpi
VirITTrojan.Win32.Agent3.WCZ
SymantecML.Attribute.HighConfidence
tehtrisGeneric.Malware
ESET-NOD32a variant of Win32/Cimag.HS
APEXMalicious
CynetMalicious (score: 100)
KasperskyHEUR:Trojan.Win32.Generic
BitDefenderGen:Variant.Hiloti.11
NANO-AntivirusVirus.Win32.Gen-Crypt.ccnc
TencentWin32.Trojan.Generic.Gflw
SophosMal/Hiloti-D
F-SecureTrojan.TR/Dropper.Gen
DrWebTrojan.Hiloti.based.2
VIPREGen:Variant.Hiloti.11
EmsisoftGen:Variant.Hiloti.11 (B)
IkarusTrojan.Win32.Hiloti
WebrootW32.Rogue.Gen
GoogleDetected
AviraTR/Dropper.Gen
Antiy-AVLTrojan/Win32.Unknown
KingsoftWin32.Trojan.Generic.a
XcitiumSuspicious@#11e7f3tr355nc
ArcabitTrojan.Hiloti.11
ZoneAlarmHEUR:Trojan.Win32.Generic
GDataGen:Variant.Hiloti.11
VaristW32/Hiloti.W.gen!Eldorado
AhnLab-V3Trojan/Win.Generic.R441039
VBA32BScope.Malware-Cryptor.Tip
ALYacGen:Variant.Hiloti.11
MAXmalware (ai score=100)
DeepInstinctMALICIOUS
MalwarebytesGeneric.Malware/Suspicious
RisingTrojan.Hiloti!8.74D (TFE:5:IVqReQ9H4UR)
YandexTrojan.Cimag!3kI5icm4V8o
SentinelOneStatic AI – Suspicious PE
FortinetW32/PackedHiloti.Z!tr
PandaGeneric Malware
CrowdStrikewin/malicious_confidence_100% (W)

How to remove Hiloti.11?

Hiloti.11 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment