How to remove “Win32/GameHack.DXN potentially unsafe”?

The Win32/GameHack.DXN potentially unsafe is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Win32/GameHack.DXN potentially unsafe virus can do?

SetUnhandledExceptionFilter detected (possible anti-debug)
Dynamic (imported) function loading detected
Enumerates running processes
The binary likely contains encrypted or compressed data.
Authenticode signature is invalid

How to determine Win32/GameHack.DXN potentially unsafe?


File Info:
name: 2BD4A966AEB4FD005B43.mlw
path: /opt/CAPEv2/storage/binaries/8f602bd5a121b6b3574b5638b5d92d6d65439d0f3c2b920161f64aac497c5c7a
crc32: 77156CC3
md5: 2bd4a966aeb4fd005b43281991589b3f
sha1: 8d3e5fc038defa8124de53973f52542900e9d312
sha256: 8f602bd5a121b6b3574b5638b5d92d6d65439d0f3c2b920161f64aac497c5c7a
sha512: 05f24f29a79616290b78bb8ad3fee580f27c17576cbaf282ab980e06496571ed6e00bb2dc20b9cc8872d77c0e087e868a3fa0863ba7f31200f668f1705d4cb78
ssdeep: 98304:F7lf24bmHUQJMHDPCuE941GLqvNFm5zYkBkdOjWaDEtRq25U:Jlf2gm0QJsXGsFfwBWa4tRV
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T126567D21E1001A34F5B602754BFC175DDB28BA920B2B61F7A68E287CED95BC9F4F2147
sha3_384: 2eeeb5727453c61162741f17ccf37c0dce5da7ee0a983b500bf5362c34342504e085a8095a2b69859bddc015c2aa9238
ep_bytes: e8c5030000e97afeffff558bec6a00ff
timestamp: 2021-11-28 14:03:57

Version Info:
0: [No Data]

Win32/GameHack.DXN potentially unsafe also known as:

Bkav	W32.AIDetect.malware1
Elastic	malicious (high confidence)
Cylance	Unsafe
Sangfor	Trojan.Win32.Save.a
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win32/GameHack.DXN potentially unsafe
APEX	Malicious
Rising	Malware.Heuristic!ET#95% (RDMK:cmRtazoB+P0ld9JGsNS+MaPRtl4D)
Sophos	Generic ML PUA (PUA)
FireEye	Generic.mg.2bd4a966aeb4fd00
SentinelOne	Static AI – Malicious PE
Microsoft	Trojan:Win32/Sabsik.FL.B!ml
Cynet	Malicious (score: 100)
VBA32	BScope.Trojan.Tiggre
Yandex	Trojan.GenAsa!Kc1RxJSQKw8
Cybereason	malicious.038def
MaxSecure	Trojan.Malware.300983.susgen

How to remove Win32/GameHack.DXN potentially unsafe?

Win32/GameHack.DXN potentially unsafe removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X