Categories: PUA

What is “PUA:Win32/Hypnamer.B!ml”?

The PUA:Win32/Hypnamer.B!ml is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What PUA:Win32/Hypnamer.B!ml virus can do?

Presents an Authenticode digital signature
Detected script timer window indicative of sleep style evasion
A process attempted to delay the analysis task.
Reads data out of its own binary image
A scripting utility was executed
Uses Windows utilities for basic functionality
Anomalous binary characteristics

How to determine PUA:Win32/Hypnamer.B!ml?


File Info:
crc32: D9AA8C14md5: e70676b69121dcdd8c797f23962802baname: googlemap.exesha1: e074a7adf77705d8fd7c4bb37a1904d5f4be6c1esha256: a6c0893c701825a2c5c204316048fe7eed23c23af09ded509d42f04b5f7f4a67sha512: 58d757044669582bc939ff5bb03c7474be09ba4b275e0cdd090727b2161c7b2daab1a61feaeb1a1ebf79a916d7333af766f4551ebad72ebaff395395538b86c0ssdeep: 49152:aZ84wabNhdn9A4KO6pisfPivxzTMqmEpuF23t4:aZr719p6pisfqv1T8Lot4type: PE32 executable (GUI) Intel 80386, for MS Windows
Version Info:
LegalCopyright: all rights reservedFileVersion: 1.0.0.9CompanyName: Bartkowalski-1960-Matchbox-Cars-Jumbo-Crane-with-Movement installerLegalTrademarks: Bartkowalski-1960-Matchbox-Cars-Jumbo-Crane-with-Movement companyComments: Bartkowalski-1960-Matchbox-Cars-Jumbo-Crane-with-Movement installerProductName: Bartkowalski-1960-Matchbox-Cars-Jumbo-Crane-with-Movement installerTranslation: 0x0452 0x04e4

PUA:Win32/Hypnamer.B!ml also known as:

FireEye	Trojan.GenericKD.34219737
McAfee	Artemis!E70676B69121
Cylance	Unsafe
VIPRE	Trojan.Win32.Generic!BT
Sangfor	Malware
K7AntiVirus	Trojan ( 0056ab371 )
BitDefender	Trojan.GenericKD.34219737
K7GW	Trojan ( 0056ab371 )
Symantec	ML.Attribute.HighConfidence
APEX	Malicious
Avast	Win32:Trojan-gen
GData	Trojan.GenericKD.34219737
Kaspersky	HEUR:Trojan-Dropper.Win32.Agent.gen
Alibaba	Trojan:Application/ctchh.a7b78f69
NANO-Antivirus	Trojan.Win32.Nemesis.hojepa
AegisLab	Trojan.Win32.Agent.b!c
MicroWorld-eScan	Trojan.GenericKD.34219737
Endgame	malicious (high confidence)
Emsisoft	Trojan.GenericKD.34219737 (B)
F-Secure	Trojan.TR/NSIS.Agent.ctchh
TrendMicro	TROJ_FRS.VSNW18G20
Sophos	Mal/Generic-S
Ikarus	Trojan-Downloader.Win32.Banload
MaxSecure	Trojan.Malware.300983.susgen
Avira	TR/NSIS.Agent.ctchh
Webroot	W32.Agent.Gen
MAX	malware (ai score=80)
Arcabit	Trojan.Generic.D20A26D9
ZoneAlarm	HEUR:Trojan-Dropper.Win32.Agent.gen
Microsoft	PUA:Win32/Hypnamer.B!ml
ALYac	Trojan.GenericKD.34219737
Ad-Aware	Trojan.GenericKD.34219737
Panda	Trj/CI.A
ESET-NOD32	a variant of NSIS/Agent.NCO
TrendMicro-HouseCall	TROJ_FRS.VSNW18G20
Fortinet	NSIS/Agent.NCO!tr
AVG	Win32:Trojan-gen
Qihoo-360	Win32/Trojan.Dropper.45c