TrojanPSW.Win64.Mimikatz removal instruction

The TrojanPSW.Win64.Mimikatz is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What TrojanPSW.Win64.Mimikatz virus can do?

How to determine TrojanPSW.Win64.Mimikatz?


File Info:
crc32: 54253559
md5: 40b58a204a87d7792fd699fcc0f87c8d
name: 40B58A204A87D7792FD699FCC0F87C8D.mlw
sha1: 115067d0464e05e5d8ec643d276d8a39d67adbac
sha256: 236cc62c5314bda30f4081db3ca37d758680801e1905150e400e422025d3a22a
sha512: 8d8203390b4dcd00177d870b0fa8398f11ce2e62f67f61c646aafae06097086fa4c1360e6cedcbcc31df521ac4ed2cf83507286337056ad9a8ffaf8028bc69a7
ssdeep: 24576:bD/uknRqe0rKq0s+2NmZLtIzRpC6tvwAK0zqTCWfS:UfQEqMRpBtvwgGT
type: PE32+ executable (console) x86-64, for MS Windows

Version Info:
LegalCopyright: Copyright (c) 2007 - 2020 gentilkiwi (Benjamin DELPY)
InternalName: mimikatz
FileVersion: 2.2.0.0
CompanyName: gentilkiwi (Benjamin DELPY)
PrivateBuild: Build with love for POC only
ProductName: mimikatz
SpecialBuild: :)
ProductVersion: 2.2.0.0
FileDescription: mimikatz for Windows
OriginalFilename: mimikatz.exe
Translation: 0x0409 0x04b0

TrojanPSW.Win64.Mimikatz also known as:

K7AntiVirus	Hacktool ( 0043c1591 )
Elastic	malicious (high confidence)
DrWeb	Tool.Mimikatz.1015
Cynet	Malicious (score: 100)
ALYac	Gen:Heur.Mimikatz.1
Cylance	Unsafe
Sangfor	Hacktool.Win32.Mimikatz.D
CrowdStrike	win/malicious_confidence_100% (W)
Alibaba	HackTool:Win32/Mimikatz.47b2595f
K7GW	Hacktool ( 0043c1591 )
Cybereason	malicious.04a87d
Cyren	W64/S-b61adc75!Eldorado
Symantec	Hacktool.Mimikatz
ESET-NOD32	a variant of Win64/Riskware.Mimikatz.D
APEX	Malicious
Avast	Win64:Malware-gen
ClamAV	Win.Trojan.Mimikatz-6466236-0
Kaspersky	HEUR:Trojan-PSW.Win64.Mimikatz.gen
BitDefender	Gen:Heur.Mimikatz.1
MicroWorld-eScan	Gen:Heur.Mimikatz.1
Tencent	Trojan.Win64.Mimikatz.a
Ad-Aware	Gen:Heur.Mimikatz.1
Sophos	Troj/Mimkatz-AE
VIPRE	Trojan.Win32.Generic!BT
TrendMicro	HKTL_MIMIKATZ64
McAfee-GW-Edition	BehavesLike.Win64.Rootkit.th
FireEye	Generic.mg.40b58a204a87d779
Emsisoft	Gen:Heur.Mimikatz.1 (B)
SentinelOne	Static AI – Malicious PE
Jiangmin	Trojan.PSW.Mimikatz.cna
Webroot	W32.Hacktool.Gen
Avira	HEUR/AGEN.1141388
eGambit	hacktool.mimikatz
Antiy-AVL	Trojan/Generic.ASMalwS.324AE35
Microsoft	HackTool:Win32/Mimikatz.D
Gridinsoft	Risk.Win64.Gen.dd!i
Arcabit	Trojan.Mimikatz.1
AegisLab	Trojan.Win64.Mimikatz.i!c
ZoneAlarm	HEUR:Trojan-PSW.Win64.Mimikatz.gen
GData	Gen:Heur.Mimikatz.1
AhnLab-V3	Trojan/Win64.Mimikatz.R285461
Acronis	suspicious
McAfee	HTool-MimiKatz!40B58A204A87
MAX	malware (ai score=89)
VBA32	TrojanPSW.Win64.Mimikatz
Malwarebytes	Generic.Trojan.Malicious.DDS
Panda	HackingTool/Mimikatz
TrendMicro-HouseCall	HKTL_MIMIKATZ64
Rising	Trojan.Tiggre!8.ED98 (CLOUD)
Ikarus	HackTool.Mimikatz
Fortinet	Riskware/Mimikatz
AVG	Win64:Malware-gen
Paloalto	generic.ml

How to remove TrojanPSW.Win64.Mimikatz?

TrojanPSW.Win64.Mimikatz removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X