Trojan

About “Trojan.Win32.SelfDel.hvnd” infection

Malware Removal

The Trojan.Win32.SelfDel.hvnd is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Win32.SelfDel.hvnd virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • Presents an Authenticode digital signature
  • Creates RWX memory
  • A process attempted to delay the analysis task.
  • Dynamic (imported) function loading detected
  • Performs HTTP requests potentially not found in PCAP.
  • Enumerates running processes
  • CAPE extracted potentially suspicious content
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • Collects information about installed applications
  • Attempts to modify proxy settings

How to determine Trojan.Win32.SelfDel.hvnd?



File Info:

name: 5FADD22D0C79ABD56C49.mlw
path: /opt/CAPEv2/storage/binaries/d95cea74afd9c953f3b16b711c394e466b2377fc72bd92c1ec51925b664838b7
crc32: 5D633725
md5: 5fadd22d0c79abd56c49b83b3f3186f2
sha1: b0c04ca4067b0b65ad32a2bb084843dcc8331d80
sha256: d95cea74afd9c953f3b16b711c394e466b2377fc72bd92c1ec51925b664838b7
sha512: d7290c618be05c688ffdc59569e0e9b4140ca10488d20eb0eca2b413a1ac8a5c712f1112d4543c84b1027791d4e94b53c9a57f1d5b88d1a13a01aae356055430
ssdeep: 98304:J5KwcfCYIM6n1DSMFFHG+UCxrm7qCfm2x:J5KwyH6wMXHRHFm7rj
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1EA0633C7FC02710DEA18ACB4665AB78BEEAA5C5885FD123B56AC30F27C52C15F14B247
sha3_384: c7abb2279954e3e4e148c0f55cefdd2597d9a74ce29747a030e4815338856ec6108d0ce00e71fc35fc098bb31fd4093e
ep_bytes: 6801508300e801000000c3c34a41e5a7
timestamp: 2019-03-07 12:56:04


Version Info:

FileDescription: OneUpdater.Software - WAHID TECH LIMITED 2019
FileVersion: 2.4.12.1
LegalCopyright: (copy) 2019 WAHID TECH LIMITED
LegalTrademarks: OneUpdater.Software - WAHID TECH LIMITED 2019
OriginalFilename: Installer.exe
ProductName: OneUpdater.Software
Translation: 0x0000 0x04e4

Trojan.Win32.SelfDel.hvnd also known as:

LionicTrojan.Win32.SelfDel.4!c
CynetMalicious (score: 100)
FireEyeGeneric.mg.5fadd22d0c79abd5
ALYacTrojan.GenericKD.47502618
CylanceUnsafe
SangforTrojan.Win32.SelfDel.hvnd
K7AntiVirusRiskware ( 0040eff71 )
AlibabaTrojan:Win32/SelfDel.abad6555
K7GWRiskware ( 0040eff71 )
SymantecML.Attribute.HighConfidence
APEXMalicious
Paloaltogeneric.ml
KasperskyTrojan.Win32.SelfDel.hvnd
BitDefenderTrojan.GenericKD.47502618
MicroWorld-eScanTrojan.GenericKD.47502618
EmsisoftTrojan.GenericKD.47502618 (B)
DrWebTrojan.Siggen8.12423
McAfee-GW-EditionArtemis!Trojan
SophosGeneric ML PUA (PUA)
IkarusTrojan.Win32.Generic
AviraHEUR/AGEN.1119250
MicrosoftTrojan:Win32/Wacatac.B!ml
ZoneAlarmTrojan.Win32.SelfDel.hvnd
GDataTrojan.GenericKD.47502618
McAfeeArtemis!5FADD22D0C79
MAXmalware (ai score=86)
VBA32BScope.Trojan.Rmnet
MalwarebytesTrojan.Agent
TrendMicro-HouseCallTROJ_GEN.R002H0CKT21
RisingTrojan.SelfDel!8.275 (CLOUD)
FortinetW32/PossibleThreat
PandaTrj/CI.A

How to remove Trojan.Win32.SelfDel.hvnd?

Trojan.Win32.SelfDel.hvnd removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment