Mal/Hakbit-A removal instruction

The Mal/Hakbit-A is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Mal/Hakbit-A virus can do?

Network activity detected but not expressed in API logs

How to determine Mal/Hakbit-A?


File Info:
crc32: C5EDE3C7
md5: a9778b0ad4a0db4ffcdf245383612989
name: tmpjl3cq48n
sha1: ceeb5972dc1cacf2e58ce8ecc2a8a74daf139ed1
sha256: 940df3b1cf603388cf9739cc208c1a88adfe39d2afe51e24a51878adca2be4e3
sha512: 4daf2cef340d09e2944586a4397a71c4a3618d4b79af605b040134f4e24218a54f35e6b6a3cb8c2e0e5767d4d18f65f98d80f273d309e8d1d0f1ba78ddb50b34
ssdeep: 3072:LeVWw2XzQylgU2HPobIzbxKtGH94tdN1s2OfJ:A2X0yWQkHo1BO
type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows

Version Info:
Translation: 0x0000 0x04b0
LegalCopyright: Copyright 2019 Zz1L9SH4L76C8r
Assembly Version: 4.5.0.0
InternalName: Ym1a4TDfrCSMo3
FileVersion: 4.5.0.0
CompanyName: N5OsJyzrVQOW0q skkyd2Bic7ue4F
LegalTrademarks: f6PrMrag04k7Ap dR8o3tRgYCXiix
ProductName: Y1NdECYIGatD0B
ProductVersion: 4.5.0.0
FileDescription: Printer Driver
OriginalFilename: 97lBRca49SIOZ9

Mal/Hakbit-A also known as:

MicroWorld-eScan	Trojan.GenericKD.33508031
CAT-QuickHeal	TrojanRansom.MSIL
Qihoo-360	Generic/Trojan.Ransom.47d
ALYac	Trojan.Ransom.Ravack
Cylance	Unsafe
Zillya	Trojan.Filecoder.Win32.12711
Sangfor	Malware
K7AntiVirus	Riskware ( 0040eff71 )
Alibaba	Trojan:MSIL/Filecoder.08a8330a
K7GW	Riskware ( 0040eff71 )
Cybereason	malicious.2dc1ca
Arcabit	Trojan.Generic.D1FF4ABF
Invincea	heuristic
BitDefenderTheta	Gen:NN.ZemsilF.34128.jq0@aepKJGk
Cyren	W32/Agent.HULO-3044
Symantec	Trojan Horse
ESET-NOD32	MSIL/Filecoder.Thanos.A
TrendMicro-HouseCall	Ransom.MSIL.BLOCKER.AC
Paloalto	generic.ml
GData	Win32.Trojan.Agent.JDJRHT
Kaspersky	HEUR:Trojan.Win32.Generic
BitDefender	Trojan.GenericKD.33508031
NANO-Antivirus	Trojan.Win32.Ransom.heayod
APEX	Malicious
Rising	Ransom.Agent!8.6B7 (KTSE)
Ad-Aware	Trojan.GenericKD.33508031
Sophos	Mal/Hakbit-A
Comodo	Malware@#1xtw682h4rzhm
F-Secure	Trojan.TR/Ransom.rqsxc
DrWeb	Trojan.Siggen9.17229
VIPRE	Win32.Malware!Drop
TrendMicro	Ransom.MSIL.BLOCKER.AC
McAfee-GW-Edition	RDN/Ransom
FireEye	Generic.mg.a9778b0ad4a0db4f
Emsisoft	Trojan.GenericKD.33508031 (B)
Ikarus	Trojan-Ransom.FileCrypter
F-Prot	W32/Agent.NCJC
Jiangmin	Trojan.MSIL.okdd
Webroot	W32.Trojan.Gen
Avira	TR/Ransom.rqsxc
Microsoft	Ransom:MSIL/Hakbit.SK!MTB
Endgame	malicious (high confidence)
ViRobot	Trojan.Win32.S.Ransom.159232.A
ZoneAlarm	HEUR:Trojan-Ransom.MSIL.Agent.gen
Cynet	Malicious (score: 85)
AhnLab-V3	Trojan/Win32.RansomCrypt.R327981
McAfee	RDN/Ransom
MAX	malware (ai score=100)
VBA32	TScope.Trojan.MSIL
Malwarebytes	Trojan.Injector
Avast	Win32:TrojanX-gen [Trj]
Zoner	Trojan.Win32.90156
Tencent	Win32.Trojan.Generic.Lnnz
Yandex	Trojan.Filecoder!wjm7Z+XG7FM
SentinelOne	DFI – Malicious PE
eGambit	Unsafe.AI_Score_86%
Fortinet	MSIL/Filecoder.VL!tr.ransom
AVG	Win32:TrojanX-gen [Trj]
Panda	Trj/WLT.F
CrowdStrike	win/malicious_confidence_100% (W)
MaxSecure	Trojan.Malware.73429809.susgen

How to remove Mal/Hakbit-A?

Mal/Hakbit-A removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X