Trojan

Trojan.Win32.Hesv.ctan removal

Malware Removal

The Trojan.Win32.Hesv.ctan is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Win32.Hesv.ctan virus can do?

  • Executable code extraction
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • Network activity detected but not expressed in API logs
  • Attempts to create or modify a Browser Helper Object
  • Anomalous binary characteristics

Related domains:

z.whorecord.xyz
a.tomx.xyz

How to determine Trojan.Win32.Hesv.ctan?



File Info:

crc32: 1728FACA
md5: f0f6f40f03da1044d2b36d66cf494909
name: F0F6F40F03DA1044D2B36D66CF494909.mlw
sha1: 1207756de4bcdbfef238dd5bcbe97942da1df335
sha256: de7cea080f03ffb0b2169e674985fe4c211429e3edfa7de40cc707b31cfaaa78
sha512: 0a7966957acd81df90e7b611e29124d1fadd11e8c2c06f5961a484db5f22d15050bf20263b830188bae2e42d98ca706127457a8196f01bb215fa34cad7acb654
ssdeep: 6144:e4HMKX1Ac9SokbszfMQoR01+VQpmQLF4HMKuEfhMP4CpmQLn0rZED1ATH32PdQx:RRFAc9S7bszfMQoR01++8QL8RPhw8QL
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

InternalName: iex9996x9875x4fddx62a4
FileVersion: 1.00
CompanyName: x4fe1x6e90x79d1x6280
ProductName: iex4e3bx9762x4fddx62a4
ProductVersion: 1.00
FileDescription: iex4e3bx9762x4fddx62a4
OriginalFilename: iex9996x9875x4fddx62a4.exe
x7ffbx8bd1: 0x0804 0x04b0

Trojan.Win32.Hesv.ctan also known as:

Elasticmalicious (high confidence)
DrWebTrojan.KillFiles.63634
CynetMalicious (score: 100)
ALYacGen:Trojan.Heur.ym0@sfYpCLgbh
CylanceUnsafe
ZillyaTrojan.Hesv.Win32.765
AlibabaTrojan:Win32/Hesv.bd290135
Cybereasonmalicious.f03da1
SymantecML.Attribute.HighConfidence
APEXMalicious
AvastWin32:Malware-gen
KasperskyTrojan.Win32.Hesv.ctan
BitDefenderGen:Trojan.Heur.ym0@sfYpCLgbh
NANO-AntivirusTrojan.Win32.Hesv.fhtgau
MicroWorld-eScanGen:Trojan.Heur.ym0@sfYpCLgbh
TencentWin32.Trojan.Hesv.Edxe
Ad-AwareGen:Trojan.Heur.ym0@sfYpCLgbh
ComodoMalware@#1ynd3t5j1k5fo
BitDefenderThetaAI:Packer.7CC2EF651D
VIPRETrojan.Win32.Generic!BT
McAfee-GW-EditionBehavesLike.Win32.Fareit.fm
FireEyeGeneric.mg.f0f6f40f03da1044
EmsisoftGen:Trojan.Heur.ym0@sfYpCLgbh (B)
SentinelOneStatic AI – Malicious PE
AviraTR/VB.Downloader.Gen
eGambitUnsafe.AI_Score_99%
MicrosoftTrojan:Win32/Wacatac.B!ml
GDataGen:Trojan.Heur.ym0@sfYpCLgbh
McAfeeArtemis!F0F6F40F03DA
MAXmalware (ai score=82)
VBA32Trojan.VB.01101
RisingTrojan.Win32.StartPage.ohi (CLASSIC)
FortinetW32/Hesv.CTAN!tr
AVGWin32:Malware-gen
Paloaltogeneric.ml

How to remove Trojan.Win32.Hesv.ctan?

Trojan.Win32.Hesv.ctan removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment