Trojan.DriveHide.VN8 information

Malware Removal

The Trojan.DriveHide.VN8 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware - Review 2020

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
6-day free trial available.

What Trojan.DriveHide.VN8 virus can do?

  • Injection (inter-process)
  • Injection (Process Hollowing)
  • Executable code extraction
  • Creates RWX memory
  • A process attempted to delay the analysis task.
  • The binary likely contains encrypted or compressed data.
  • Executed a process and injected code into it, probably while unpacking
  • Tries to unhook or modify Windows functions monitored by Cuckoo
  • Checks the CPU name from registry, possibly for anti-virtualization
  • Harvests information related to installed mail clients
  • Anomalous binary characteristics

How to determine Trojan.DriveHide.VN8?


File Info:

crc32: 59F8644F
md5: 8fdf8d891d20326e91c0d4569a17154b
name: upload_file
sha1: 8e81d181d20f55c8e68eedd3b79a85067501f136
sha256: 0bca9ab193fb9d806d0fb74f5d03ef6f454037d5fe784a8b8fb912ccfc790719
sha512: f7e01c056e4bce174568ad7d5baafa32c19e397ad1e2657378964d31669c20b3e8a630e9109596dd6d8bc65e8d962b372afc6548caa477195cbd26fe927f8274
ssdeep: 12288:gywTFD6r91Yk/yHVMSVBltzbGmbaLd7OzlpUf5mcAbcBGJkvPMkrlM45/is:qgp1Yk2MEltHfGLdefUhm7qGJ2PLrO4D
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:

LegalCopyright: Co;;pk So65rftakire Corp.
InternalName:
FileVersion: 6f0
CompanyName: Brlan44lSrbbge Co.
LegalTrademarks:
Comments:
ProductName:
ProductVersion: 6z335.0
FileDescription:
OriginalFilename:
Translation: 0x0409 0x04e4

Trojan.DriveHide.VN8 also known as:

BkavW32.AIDetectVM.malware2
Elasticmalicious (high confidence)
FireEyeGeneric.mg.8fdf8d891d20326e
CAT-QuickHealTrojan.DriveHide.VN8
Cybereasonmalicious.1d20f5
InvinceaML/PE-A
BitDefenderThetaGen:NN.ZelphiF.34566.5G0@aeECx7oi
APEXMalicious
KasperskyUDS:DangerousObject.Multi.Generic
Paloaltogeneric.ml
McAfee-GW-EditionBehavesLike.Win32.Worm.dh
IkarusWin32.Outbreak
MicrosoftTrojan:Win32/Woreflint.A!cl
ZoneAlarmUDS:DangerousObject.Multi.Generic
CynetMalicious (score: 100)
McAfeePWS-FCRZ!8FDF8D891D20
RisingTrojan.Generic@ML.100 (RDML:Jl+Nq51h4QOk9Ehe/jMceQ)
SentinelOneDFI – Suspicious PE
eGambitUnsafe.AI_Score_100%
MaxSecureTrojan.Malware.300983.susgen
AVGFileRepMalware
CrowdStrikewin/malicious_confidence_60% (D)
Qihoo-360Generic/HEUR/QVM05.1.96FB.Malware.Gen

How to remove Trojan.DriveHide.VN8?

Trojan.DriveHide.VN8 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

Leave a Comment