Trojan

Trojan.Win32.HWorld removal

Malware Removal

The Trojan.Win32.HWorld is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Win32.HWorld virus can do?

  • Authenticode signature is invalid
  • Anomalous binary characteristics

How to determine Trojan.Win32.HWorld?



File Info:

name: 189A71DD2E26C77D0773.mlw
path: /opt/CAPEv2/storage/binaries/4ef4e4b90772574319c4b2f05ae9ce44c8544feec3f0f8337f1c715d7c53d8cd
crc32: 39CEB65E
md5: 189a71dd2e26c77d07739f5575a1f25a
sha1: d07579365764e0a88f7c680770dc03002f3b0ecc
sha256: 4ef4e4b90772574319c4b2f05ae9ce44c8544feec3f0f8337f1c715d7c53d8cd
sha512: 6cc315958601ec92aa330dfb5ea231058429b605c6abcf66451847457356421d18cbbe43587808cb2e6b9356c2d9b3fcf83cad34b84f80fa585176b34f893b6d
ssdeep: 192:8X6UwhXlMTLfuG32SYConrNyrrnz1YzFqnRwbEue7fzSxLMkuWdiW:dVh1MOG3M27+kGSTCAWdiW
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T1035228337291013EE0C895B1CB3E6B2246275C109E2DF7CF922E5D2519B9AB6A430E27
sha3_384: 229df69dd3e0b6b12eab5dd23407798a3483da9b749123fd6fa45ccc32d54c91398eef7fd25cb6d7d3e2c3a67e7e819f
ep_bytes: 81ec001100000f70caf3be000400018b
timestamp: 2001-08-17 20:53:07


Version Info:

CompanyName: Microsoft Corporation
FileDescription: Keyboard History Utility
FileVersion: 5.1.2600.0 (xpclient.010817-1148)
InternalName: doskey
LegalCopyright: © Microsoft Corporation. All rights reserved.
OriginalFilename: DOSKEY.EXE
ProductName: Microsoft® Windows® Operating System
ProductVersion: 5.1.2600.0
Translation: 0x0409 0x04b0

Trojan.Win32.HWorld also known as:

BkavW32.AIDetectMalware
LionicTrojan.Win32.HWorld.4!c
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Trojan.FileInfector.am0@aGSTpwp
ClamAVWin.Virus.Hematite-6232506-0
FireEyeGeneric.mg.189a71dd2e26c77d
CAT-QuickHealW32.Infector.A5
McAfeeW32/HWorld!189A71DD2E26
MalwarebytesGeneric.Malware/Suspicious
SangforSuspicious.Win32.Save.a
K7AntiVirusTrojan ( 00573f0d1 )
AlibabaMalware:Win32/km_2d154161.None
K7GWTrojan ( 00573f0d1 )
CrowdStrikewin/malicious_confidence_100% (W)
CyrenW32/Hematite.F.gen!Eldorado
SymantecTrojan.Gen.6
ESET-NOD32a variant of Win32/Agent.NFR
APEXMalicious
CynetMalicious (score: 100)
KasperskyHEUR:Trojan.Win32.HWorld.gen
BitDefenderGen:Trojan.FileInfector.am0@aGSTpwp
NANO-AntivirusVirus.Win32.Infector.emtrum
AvastWin32:Hematite-C [Inf]
EmsisoftGen:Trojan.FileInfector.am0@aGSTpwp (B)
F-SecureTrojan.TR/Patched.Gen
DrWebWin32.Siggen.29
VIPREGen:Trojan.FileInfector.am0@aGSTpwp
TrendMicroTROJ_GEN.R002C0DH923
McAfee-GW-EditionBehavesLike.Win32.HWorld.lh
Trapminemalicious.moderate.ml.score
SophosW32/HWorld-A
SentinelOneStatic AI – Malicious PE
GDataGen:Trojan.FileInfector.am0@aGSTpwp
AviraTR/Patched.Gen
MAXmalware (ai score=80)
Antiy-AVLGrayWare/Win32.Kryptik.Hematite
XcitiumVirus.Win32.Hematite.A@77ycil
ArcabitTrojan.FileInfector.E229E9
ZoneAlarmHEUR:Trojan.Win32.HWorld.gen
MicrosoftVirus:Win32/Hematite.A
GoogleDetected
AhnLab-V3Virus/Win32.Hematite.R198137
Acronissuspicious
ALYacGen:Trojan.FileInfector.am0@aGSTpwp
VBA32Win32.Virus.Unknown.Heur
Cylanceunsafe
PandaTrj/CI.A
TrendMicro-HouseCallTROJ_GEN.R002C0DH923
RisingVirus.Agent!1.B308 (CLASSIC)
IkarusVirus.Win32.Agent
MaxSecureVirus.W32.Infector.Gen
FortinetW32/Agent.D17
AVGWin32:Hematite-C [Inf]
DeepInstinctMALICIOUS

How to remove Trojan.Win32.HWorld?

Trojan.Win32.HWorld removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment