RiskWare.GameHack.Discord malicious file

The RiskWare.GameHack.Discord is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What RiskWare.GameHack.Discord virus can do?

Yara rule detections observed from a process memory dump/dropped files/CAPE
The binary likely contains encrypted or compressed data.
Authenticode signature is invalid
Uses Windows utilities for basic functionality

How to determine RiskWare.GameHack.Discord?


File Info:
name: 86CFA4D0D6B1E63505BE.mlw
path: /opt/CAPEv2/storage/binaries/48982cb342eabb8b8e31c7e5bb2eb67230c3e11037d38343f65c93a89864eb4f
crc32: 12838212
md5: 86cfa4d0d6b1e63505bee0c80648eecd
sha1: efa9c45878402d46766d1d075bd0ed87c79b073c
sha256: 48982cb342eabb8b8e31c7e5bb2eb67230c3e11037d38343f65c93a89864eb4f
sha512: 516c1a07f419fd784029f9ab283beecc3ca0f3b2e1742777b44d75ea186734d8932c625d131b9976828695e44ad15fd4ed4082c1a4e195d7a5223b44d9114701
ssdeep: 49152:GcWzbHzqfv/rpGo/o8R9BqSPEYy1TSnc1Dc0+19/:GcWzjGlGslR9cXYy
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T117C5BE12FF4298F1E98205B960A7677F9D39A9248328C9D3D7D01DB5C8312E16A3F3D9
sha3_384: d5168ad84d33bacb8821ae9c598d5200c3a037c37ebf75280016cb77fe2936fc40fb38816434b6b0a4b3ad94bd15e179
ep_bytes: e8560c0000e974feffff558bec83254c
timestamp: 2022-11-07 11:41:32

Version Info:
0: [No Data]

RiskWare.GameHack.Discord also known as:

Bkav	W32.AIDetect.malware2
Lionic	Trojan.Win32.Jaik.4!c
Elastic	malicious (high confidence)
MicroWorld-eScan	Gen:Variant.Jaik.68316
FireEye	Gen:Variant.Jaik.68316
McAfee	Artemis!86CFA4D0D6B1
Cylance	Unsafe
VIPRE	Gen:Variant.Jaik.68316
Sangfor	Trojan.Win32.Agent.Vpm3
Alibaba	HackTool:Win32/Generic.738d361f
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win32/HackTool.GameHack.EL
Cynet	Malicious (score: 100)
BitDefender	Gen:Variant.Jaik.68316
Avast	FileRepMalware [Misc]
Tencent	Win32.Trojan.Agen.Cnhl
Ad-Aware	Gen:Variant.Jaik.68316
McAfee-GW-Edition	BehavesLike.Win32.Injector.vh
Emsisoft	Gen:Variant.Jaik.68316 (B)
GData	Gen:Variant.Jaik.68316
Avira	HEUR/AGEN.1227012
Arcabit	Trojan.Jaik.D10ADC
Microsoft	Trojan:Win32/Wacatac.B!ml
Google	Detected
AhnLab-V3	Malware/Win.QE.C5299085
Acronis	suspicious
ALYac	Gen:Variant.Jaik.68316
MAX	malware (ai score=81)
VBA32	BScope.Trojan.Packed
Malwarebytes	RiskWare.GameHack.Discord
TrendMicro-HouseCall	TROJ_GEN.R002H0CK722
Rising	Trojan.Generic@AI.100 (RDML:qac3kiYPGo6XU42wcUgn6g)
Ikarus	Trojan.SuspectCRC
Fortinet	W32/GameHack.EL!tr
AVG	FileRepMalware [Misc]

How to remove RiskWare.GameHack.Discord?

RiskWare.GameHack.Discord removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X