Crack

NSIS:HacktoolX-gen [Trj] removal guide

Malware Removal

The NSIS:HacktoolX-gen [Trj] is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What NSIS:HacktoolX-gen [Trj] virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Sample contains Overlay data
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • Reads data out of its own binary image
  • CAPE extracted potentially suspicious content
  • Authenticode signature is invalid

How to determine NSIS:HacktoolX-gen [Trj]?



File Info:

name: 5E6E5C23C0E912D07D8F.mlw
path: /opt/CAPEv2/storage/binaries/ce7758a3074139bd2c9e2d9207c24f4c3b62b58734f2dd8b6988c335e35fdd7f
crc32: 23F19DA7
md5: 5e6e5c23c0e912d07d8f52848bd3bfb1
sha1: f49f85f4280efc564b0d5e4b1ea6a812cbd354b7
sha256: ce7758a3074139bd2c9e2d9207c24f4c3b62b58734f2dd8b6988c335e35fdd7f
sha512: 3ef5e8fb8ca175b7152559f1f91d25f0e28cc95c71aa849fd9f624884b96b5c050b861c57d093f6e7ebc03ce2036fc92f46325ca143097a28f820f76a09d38df
ssdeep: 49152:9eD/KCrar4J6jzfnDz49zAHmzyxpPxzStGLe3PrW5HTF:9eDiUaI6jjY2xoK5HJ
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T17116331E3F6DC0E7E9F148B199BAE993476DB424BD3E9026B3800C1F7532A40D926767
sha3_384: 3040fbda8a3c03a90fef8b84c9dd5dafb8bd113919da59b8aad38160c76a2f35d0c5b719721213ee68a6b4382a328c44
ep_bytes: 81ecd4020000535556576a2033ed5e89
timestamp: 2012-02-24 19:20:04


Version Info:

FileDescription: 
FileVersion: 9.2.1
LegalCopyright: 
ProductVersion: 9.2.1
Translation: 0x0000 0x04b0

NSIS:HacktoolX-gen [Trj] also known as:

BkavW32.AIDetect.malware2
LionicTrojan.Win32.Generic.4!c
MicroWorld-eScanDropped:Trojan.GenericKD.61388170
FireEyeGeneric.mg.5e6e5c23c0e912d0
ALYacDropped:Trojan.GenericKD.61388170
CylanceUnsafe
SangforSuspicious.Win32.Save.ins
K7AntiVirusTrojan ( 0057107a1 )
AlibabaPacked:Win32/SilentInstallBuilder.755799b8
K7GWTrojan ( 0057107a1 )
Cybereasonmalicious.3c0e91
SymantecML.Attribute.HighConfidence
Elasticmalicious (high confidence)
ESET-NOD32a variant of Win32/Packed.SilentInstallBuilder.A suspicious
APEXMalicious
Paloaltogeneric.ml
ClamAVWin.Malware.Johnnie-9843463-0
BitDefenderDropped:Trojan.GenericKD.61388170
NANO-AntivirusTrojan.Win32.Razy.iupfnt
AvastNSIS:HacktoolX-gen [Trj]
Ad-AwareDropped:Trojan.GenericKD.61388170
EmsisoftDropped:Trojan.GenericKD.61388170 (B)
F-SecureHeuristic.HEUR/AGEN.1207396
VIPREDropped:Trojan.GenericKD.61388170
TrendMicroTROJ_GEN.R002C0PGM21
McAfee-GW-EditionBehavesLike.Win32.OneSysCare.wh
Trapminemalicious.moderate.ml.score
SophosMal/Generic-S
SentinelOneStatic AI – Suspicious PE
GoogleDetected
AviraHEUR/AGEN.1207396
Antiy-AVLTrojan/Win32.Generic
MicrosoftTrojan:Win32/Wacatac.B!ml
ArcabitTrojan.Generic.D3A8B58A
GDataDropped:Trojan.GenericKD.61388170
CynetMalicious (score: 99)
AhnLab-V3Malware/Win.Generic.R478928
McAfeeArtemis!5E6E5C23C0E9
MAXmalware (ai score=84)
MalwarebytesUpatre.Trojan.Downloader.DDS
TrendMicro-HouseCallTROJ_GEN.R002C0PGM21
RisingTrojan.Generic@AI.76 (RDMK:cmRtazrXpX6zIm/tlM+z2u8UZ2ST)
YandexRiskware.SiInstallBuilder!zpfBvmmNkAA
IkarusPUA.SilentInstallBuilder
MaxSecureTrojan.Malware.179563077.susgen
FortinetRiskware/Application
AVGNSIS:HacktoolX-gen [Trj]
CrowdStrikewin/malicious_confidence_70% (W)

How to remove NSIS:HacktoolX-gen [Trj]?

NSIS:HacktoolX-gen [Trj] removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment