What is “Win32/GameHack.CDY potentially unsafe”?

The Win32/GameHack.CDY potentially unsafe is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Win32/GameHack.CDY potentially unsafe virus can do?

The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid
CAPE detected the shellcode get eip malware family
Yara detections observed in process dumps, payloads or dropped files

How to determine Win32/GameHack.CDY potentially unsafe?


File Info:
name: 1614A683E90F57EE520C.mlw
path: /opt/CAPEv2/storage/binaries/7d2ec277da9c373d6d8dd1b75e9ed81dd78666bf1a8fdfe7ad371f0d99725a80
crc32: 89121F74
md5: 1614a683e90f57ee520c70bfbca211ae
sha1: f7c5edf2df180fa5282bc163d7b6ff450a637076
sha256: 7d2ec277da9c373d6d8dd1b75e9ed81dd78666bf1a8fdfe7ad371f0d99725a80
sha512: 90134fb6f100b64dec58f2cabec7eca0a241fe7338ebd0e98d1b78983cd307e8359a88adc069c479391e49490b3acb30ca63ec875d4254ecd0ddd0c9bc9b74d1
ssdeep: 12288:nnJ5uzds5wLgCUZjtja1IbjV8tScUlj0ZQZiXQLYi6Ub8ut4:Jids5wLgCUrja1uJ8tScUN0ZcigJb
type: PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
tlsh: T1FEE44B136650C418F49760FE396A932D0E2E34A2EB9C48C738D523D996F4EF5BE36127
sha3_384: 625003ae3c2a7870ecba3f2811764b560bc7d6cb522de0eb154e119c97036142dc9cf4b6cb4e7e73a77d2199189152ab
ep_bytes: e9f5c80200e9c0190200e919640700e9
timestamp: 2014-03-05 04:58:42

Version Info:
0: [No Data]

Win32/GameHack.CDY potentially unsafe also known as:

Bkav	W32.Common.7A2072D0
Lionic	Trojan.Win32.Gamehack.4!c
Skyhigh	RDN/Generic.dx
McAfee	RDN/Generic.dx
Cylance	unsafe
Sangfor	Trojan.Win32.Gamehack.Vgv1
K7GW	Unwanted-Program ( 0055e6111 )
K7AntiVirus	Unwanted-Program ( 0055e6111 )
Symantec	ML.Attribute.HighConfidence
tehtris	Generic.Malware
ESET-NOD32	a variant of Win32/GameHack.CDY potentially unsafe
Ikarus	Trojan-Spy.Agent
Google	Detected
Antiy-AVL	RiskWare/Win32.Gamehack
TrendMicro-HouseCall	TROJ_GEN.R002H06J223
MaxSecure	Trojan.Malware.3411146.susgen
Fortinet	Riskware/GameHack
DeepInstinct	MALICIOUS

How to remove Win32/GameHack.CDY potentially unsafe?

Win32/GameHack.CDY potentially unsafe removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X