Hoax.Aura malicious file

The Hoax.Aura is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Hoax.Aura virus can do?

The binary likely contains encrypted or compressed data.
The executable is compressed using UPX
Network activity detected but not expressed in API logs

How to determine Hoax.Aura?


File Info:
crc32: 70CC75FD
md5: 689cc4b61ed5e526545ada3e2a46db8a
name: 689CC4B61ED5E526545ADA3E2A46DB8A.mlw
sha1: 535e0da5d84012ee75b514939ff9b5a8272aa9f8
sha256: a96bf81ef34a49d102078fa2e378347c0600ad4cf60a151dde41a84d5f7e3ab2
sha512: 5b1aa97c49262860502f0bcdac4edc5a56baaf480e3afcc176bf36de1070722566d2b27d876bebcb83e394ead350e8ccd0666067e49eb886698f1bfa2c3fc6f4
ssdeep: 12288:AfrgPJHL+cjGhqaUKU0RiMvgWVd6RjlFYhA2ixnmbytdg5jZP81BAjvZn:0wJiQGAWE6d6RJC9iQjpcBy
type: PE32 executable (GUI) Intel 80386 (stripped to external PDB), for MS Windows, UPX compressed

Version Info:
0: [No Data]

Hoax.Aura also known as:

Bkav	W32.AIDetect.malware2
K7AntiVirus	Riskware ( 0040eff71 )
MicroWorld-eScan	Gen:Variant.Ransom.Aura.1
ALYac	Gen:Variant.Ransom.Aura.1
Cylance	Unsafe
Zillya	Trojan.GenericKD.Win32.16646
Sangfor	Ransom.Win32.Aura.1
Alibaba	Ransom:Win32/Generic.5009c701
K7GW	Riskware ( 0040eff71 )
Cybereason	malicious.61ed5e
Symantec	Trojan Horse
APEX	Malicious
Avast	Win32:Malware-gen
BitDefender	Gen:Variant.Ransom.Aura.1
NANO-Antivirus	Trojan.Win32.Ransom.ewonge
Ad-Aware	Gen:Variant.Ransom.Aura.1
Sophos	Mal/Generic-S
Comodo	Malware@#1gon54shbthvu
BitDefenderTheta	Gen:NN.ZexaF.34738.RmGfaa9@8od
VIPRE	Trojan.Win32.Generic!BT
McAfee-GW-Edition	BehavesLike.Win32.Dropper.jc
FireEye	Gen:Variant.Ransom.Aura.1
Emsisoft	Gen:Variant.Ransom.Aura.1 (B)
Jiangmin	Trojan.Aura.de
Microsoft	Trojan:Win32/Occamy.C
Arcabit	Trojan.Ransom.Aura.1
GData	Gen:Variant.Ransom.Aura.1
AhnLab-V3	Malware/Win32.RL_Generic.R302365
McAfee	Artemis!689CC4B61ED5
VBA32	Hoax.Aura
Panda	Trj/CI.A
Fortinet	W32/PossibleThreat
AVG	Win32:Malware-gen
Paloalto	generic.ml

How to remove Hoax.Aura?

Hoax.Aura removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X