Trojan

What is “Trojan:Win64/CobaltDrop.D!dha”?

Malware Removal

The Trojan:Win64/CobaltDrop.D!dha is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan:Win64/CobaltDrop.D!dha virus can do?

    How to determine Trojan:Win64/CobaltDrop.D!dha?

    

    File Info:
    
crc32: 48430F04
    md5: a3b014a79c6de2f7285bfaaceb85f1e7
    name: upload_file
    sha1: a41129b97fed1a5735e82c08a3453b45ccef8ed1
    sha256: 1e066397e0888f0fd4cc30a687a4b923418c30a2fa529c6ace6d27ea51e3dde8
    sha512: dc8b38a13d0330e19687719c7ae67cd9004c811a80a165260216c6422afdb6b80dbbc72a6f7493b3b3778591bf3888034f0ca4d46ea3009cc81191a77caed335
    ssdeep: 6144:TXt8VaLuxvxL4IaOT6tEm93WfwM31tOK+:TaVaLavxsIa3nGP31n
    type: PE32+ executable (DLL) (GUI) x86-64, for MS Windows
    

    Version Info:
    
0: [No Data]

    Trojan:Win64/CobaltDrop.D!dha also known as:

    Elasticmalicious (high confidence)
    DrWebBackDoor.Meterpreter.18
    MicroWorld-eScanGeneric.Exploit.Shellcode.2.973F52AA
    FireEyeGeneric.mg.a3b014a79c6de2f7
    McAfeeCobaltStr-FDWE!A3B014A79C6D
    CylanceUnsafe
    BitDefenderGeneric.Exploit.Shellcode.2.973F52AA
    CrowdStrikewin/malicious_confidence_100% (D)
    TrendMicroHT_COMETER_GL080012.UVPM
    APEXMalicious
    AvastWin64:Malware-gen
    ClamAVWin.Trojan.CobaltStrike-8091534-0
    KasperskyHEUR:Trojan.Win32.Cometer.gen
    TencentMalware.Win32.Gencirc.10b3d27b
    Ad-AwareGeneric.Exploit.Shellcode.2.973F52AA
    SophosMal/Swrort-Y
    ZillyaTool.CobaltStrike.Win64.8
    InvinceaMal/Swrort-Y
    EmsisoftGeneric.Exploit.Shellcode.2.973F52AA (B)
    IkarusPUA.RiskWare.Cobaltstrike
    JiangminHackTool.Cobalt.j
    MAXmalware (ai score=80)
    Antiy-AVLTrojan/Win32.Cometer
    MicrosoftTrojan:Win64/CobaltDrop.D!dha
    ArcabitGeneric.Exploit.Shellcode.2.973F52AA
    ZoneAlarmHEUR:Trojan.Win32.Cometer.gen
    GDataWin64.Trojan.Meterpreter.A
    CynetMalicious (score: 100)
    AhnLab-V3HackTool/Win32.Cobalt.R218043
    Acronissuspicious
    ALYacGeneric.Exploit.Shellcode.2.973F52AA
    MalwarebytesTrojan.Cometer
    ESET-NOD32a variant of Win64/RiskWare.CobaltStrike.Beacon.A
    TrendMicro-HouseCallHT_COMETER_GL080012.UVPM
    RisingHackTool.Swrort!1.6477 (CLASSIC)
    YandexTrojan.Cometer!
    SentinelOneDFI – Malicious PE
    eGambitTrojan.Generic
    FortinetW32/Meterpreter.AAE!tr
    AVGWin64:Malware-gen

    How to remove Trojan:Win64/CobaltDrop.D!dha?

    Trojan:Win64/CobaltDrop.D!dha removal tool
    • Download and install GridinSoft Anti-Malware.
    • Open GridinSoft Anti-Malware and perform a “Standard scan“.
    • Move to quarantine” all items.
    • Open “Tools” tab – Press “Reset Browser Settings“.
    • Select proper browser and options – Click “Reset”.
    • Restart your computer.

    You may also like

    About the author

    Paul Valéry

    I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

    View all posts

    Leave a Comment