Trojan

Trojan.Win64.Cobalt removal guide

Malware Removal

The Trojan.Win64.Cobalt is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Win64.Cobalt virus can do?

  • Drops a binary and executes it
  • The binary likely contains encrypted or compressed data.
  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

How to determine Trojan.Win64.Cobalt?



File Info:

crc32: 99F306AD
md5: 51e49486f77e79bfad1bc8399839e855
name: Arma-3-Apex-Edition-Trainer-9-Ver-1.80.143869-Update-15.03.2018-64-Bit-Baracuda.EXE
sha1: a0dddac75cf7637e488ce965cb8f614a41718198
sha256: f619022198b64af6e0f022b18f2128ddf61571ced88a6df2fce800ca70f4021a
sha512: 592e2e0a8576885eaeb45c9a6cae49b26029484b4b60257a764ca970060ac37780010b6d5dcc15a47c2f198a120ded88a6196871e8b2a11b92f8c863c895e07d
ssdeep: 98304:C4U+IwUn7k+ec0dHqfut3gSYEhhFiy4S9Q0mz2suQ0eq5Oq:GQU7KKa3YUiyl9QpRcBx
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

0: [No Data]

Trojan.Win64.Cobalt also known as:

CAT-QuickHealDropper.Jeefo.YY5
McAfeeArtemis!51E49486F77E
CylanceUnsafe
K7GWUnwanted-Program ( 004ba1a41 )
K7AntiVirusUnwanted-Program ( 004ba1a41 )
Invinceaheuristic
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/HackTool.CheatEngine.AF potentially unsafe
Paloaltogeneric.ml
McAfee-GW-EditionBehavesLike.Win32.PUPXAR.rc
SentinelOnestatic engine – malicious
JiangminTrojanSpy.KeyLogger.lsz
WebrootW32.Hacktool.Gen
FortinetRiskware/CheatEngine
Endgamemalicious (high confidence)
MAXmalware (ai score=95)
VBA32Trojan.Win64.Cobalt
MalwarebytesRiskWare.CheatEngine
RisingMalware.Heuristic!ET#100% (RDM+:cmRtazog3uCzOoU2Amry6lGIxobf)
YandexHackTool.CheatEngine!h2lP7QG9eRI
GDataWin32.Riskware.Hacktool.D
Cybereasonmalicious.75cf76
CrowdStrikemalicious_confidence_100% (D)

How to remove Trojan.Win64.Cobalt?

Trojan.Win64.Cobalt removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment