Trojan

What is “Trojan-PSW.Win32.Disco.hup”?

Malware Removal

The Trojan-PSW.Win32.Disco.hup is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan-PSW.Win32.Disco.hup virus can do?

  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX
  • Authenticode signature is invalid

How to determine Trojan-PSW.Win32.Disco.hup?



File Info:

name: CF6F99E8A7AE9A817477.mlw
path: /opt/CAPEv2/storage/binaries/e7b3baeb0e7c0cfcaee1be530f73b880b80a7a1f8d0a2e598158aef65bad2f4a
crc32: 6B79ACBC
md5: cf6f99e8a7ae9a8174774e56200fc244
sha1: 0283651f50cb611f58b071380b5167236461d606
sha256: e7b3baeb0e7c0cfcaee1be530f73b880b80a7a1f8d0a2e598158aef65bad2f4a
sha512: b9801f64ab707c52be0172da9a88c7eb181551c3e21a98bd58434e466b688af4845ff01d0f585bb6e0f68a5a9d9189aa52dcccae46ca13abd26b5dc7217038bc
ssdeep: 12288:gPgHlp8ydMgk7c+Jej1dzbsoEK0lwzTFZoO1o76aJoRvD:gDydMgkzJePbz/1zJZoOe76aJoRv
type: PE32+ executable (console) x86-64, for MS Windows
tlsh: T1A6C42366320BE2EEC7931B3E0C29D8BE6870E930B7231D7951EDB21691FCC765CA4851
sha3_384: dfb1c4cca59728683f9b593d9a41cfae6183c9b9b98fba41a34ab5db0671f944ea8ecf9e1b95fd4e1cc2c0caaa23f06e
ep_bytes: 53565755488d35f523f7ff488dbe0080
timestamp: 2021-11-29 15:06:07


Version Info:

0: [No Data]

Trojan-PSW.Win32.Disco.hup also known as:

LionicTrojan.Win32.Disco.i!c
MicroWorld-eScanTrojan.GenericKD.38155348
FireEyeGeneric.mg.cf6f99e8a7ae9a81
ALYacTrojan.GenericKD.38155348
ZillyaTrojan.Disco.Win32.4286
AlibabaTrojanPSW:Win32/Disco.29c6b2d0
K7GWRiskware ( 0040eff71 )
K7AntiVirusRiskware ( 0040eff71 )
TrendMicro-HouseCallTROJ_GEN.R002C0WL321
KasperskyTrojan-PSW.Win32.Disco.hup
BitDefenderTrojan.GenericKD.38155348
AvastWin64:Malware-gen
TencentWin32.Trojan-qqpass.Qqrob.Tbit
Ad-AwareTrojan.GenericKD.38155348
TrendMicroTROJ_GEN.R002C0WL321
McAfee-GW-EditionBehavesLike.Win64.Trickbot.hc
EmsisoftTrojan.GenericKD.38155348 (B)
GDataTrojan.GenericKD.38155348
JiangminTrojan.PSW.Disco.ckv
ArcabitTrojan.Generic.D2463454
CynetMalicious (score: 100)
AhnLab-V3Trojan/Win.PWS.C4811034
McAfeeRDN/Generic PWS.y
MAXmalware (ai score=81)
APEXMalicious
FortinetW32/PossibleThreat
AVGWin64:Malware-gen
Cybereasonmalicious.f50cb6
PandaTrj/CI.A
MaxSecureTrojan.Malware.300983.susgen

How to remove Trojan-PSW.Win32.Disco.hup?

Trojan-PSW.Win32.Disco.hup removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment