Crack

What is “Win32/GameHack.EPN potentially unsafe”?

Malware Removal

The Win32/GameHack.EPN potentially unsafe is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Win32/GameHack.EPN potentially unsafe virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • Creates RWX memory
  • Guard pages use detected – possible anti-debugging.
  • Dynamic (imported) function loading detected
  • Enumerates running processes
  • Expresses interest in specific running processes
  • Reads data out of its own binary image
  • Drops a binary and executes it
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid

How to determine Win32/GameHack.EPN potentially unsafe?



File Info:

name: F8B3C1F628BDF6CD5885.mlw
path: /opt/CAPEv2/storage/binaries/f6ae4ff3b9eacd2d6bca38c923e4912d2ac8fc50d91a7b14e0a629fc8b86bc80
crc32: A6EC5570
md5: f8b3c1f628bdf6cd58851b517fb9b484
sha1: e059e58779e07f32df1debb89b3f2e89c299efef
sha256: f6ae4ff3b9eacd2d6bca38c923e4912d2ac8fc50d91a7b14e0a629fc8b86bc80
sha512: d3d2154d6b17a7658795aed4b5ed5ea3df8b5c7bc74f7bae4c22477b27a75abb961996bb48c1791326a074a65a358960bc3a6f0aaaf92eacebb51ad41f0758f9
ssdeep: 196608:v0HK4yRLL52XSzf3tta2cxV+uOidQMWPP73t1+GdOdiaMYCzg:l4yRLV2XMTcbKzlPPGGUojzg
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1BBA6233FB2A8753EC4AE1B3146B3A350987BBB61A41A8C2E57F4090DCF665601F3F645
sha3_384: 75cf63c19b884467f3fd1b4235cd1f01b688bc4ec69e89686c58d681e376f9481abca9930b10147f362d83008336b4cf
ep_bytes: 558bec83c4a453565733c08945c48945
timestamp: 2021-06-03 08:09:11


Version Info:

Comments: This installation was built with Inno Setup.
CompanyName: 420Cheats, Inc.                                             
FileDescription: 420Cheats - Legit Cheat and Free for All Games              
FileVersion: 1.0.0.0             
LegalCopyright: Copyright 2021 © 420Cheats Inc. All rights reserved.                                                
OriginalFileName:                                                   
ProductName: 420Cheats                                                   
ProductVersion: 1.0.0.0                                           
Translation: 0x0000 0x04b0

Win32/GameHack.EPN potentially unsafe also known as:

CynetMalicious (score: 100)
K7GWUnwanted-Program ( 005689071 )
K7AntiVirusUnwanted-Program ( 005689071 )
CyrenW32/GameHack.Y.gen!Eldorado
ESET-NOD32a variant of Win32/GameHack.EPN potentially unsafe
APEXMalicious
AvastWin32:MiscX-gen [PUP]
KasperskyHEUR:HackTool.Win32.GameHack.gen
MicrosoftTrojan:Win32/Sabsik.FL.B!ml
ZoneAlarmHEUR:HackTool.Win32.GameHack.gen
RisingMalware.Undefined!8.C (C64:YzY0OqRxNTTzcusX)
YandexRiskware.Agent!HVWD+gdHRws
AVGWin32:MiscX-gen [PUP]

How to remove Win32/GameHack.EPN potentially unsafe?

Win32/GameHack.EPN potentially unsafe removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment