What is “Win32/HackTool.Elevate.J”?

The Win32/HackTool.Elevate.J is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Win32/HackTool.Elevate.J virus can do?

Authenticode signature is invalid

How to determine Win32/HackTool.Elevate.J?


File Info:
name: C787A36AB62C11A73720.mlw
path: /opt/CAPEv2/storage/binaries/8304c20b0298f98679a5ee0422d81d0387af687d23e00ab61950e5c0d9bc6e28
crc32: 6557B214
md5: c787a36ab62c11a73720c3ec8800192b
sha1: 1c89741a9fa1e82402911684f3c82cb89ab18a0f
sha256: 8304c20b0298f98679a5ee0422d81d0387af687d23e00ab61950e5c0d9bc6e28
sha512: 62cea3820f09c6362b7ff82775dda8fbe60c43f9a283c66b8e7ab1961847afb62f3b5fc1b648c1bff084de6cb7736ac03a2e355ebe71abfcd49b78316679543c
ssdeep: 3072:29c7VVz9zZK9NScGvpUoglX7C9Q8t7ZleHLUQRL8tj8ueaFcY4j:29c7Vk9NSJvGrl5aiY4
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T132141A30A6A0C034F4B7027555FA83B4B93879715B7884CB93D13AEA1974BE9DD31BA3
sha3_384: 9c2975e429714316bf8041ea5c15d890b5860e0293502d0a8afa30cb8175de5e5642dcde7f33d0703eb068a6f87cd0bc
ep_bytes: 558bece888930000e893fdffff5dc3cc
timestamp: 2018-11-21 02:49:39

Version Info:
0: [No Data]

Win32/HackTool.Elevate.J also known as:

Lionic	Hacktool.Win32.BypassUAC.3!c
Cynet	Malicious (score: 99)
FireEye	Trojan.GenericKD.44159736
McAfee	Artemis!C787A36AB62C
Cylance	Unsafe
Zillya	Exploit.BypassUAC.Win32.2026
Sangfor	Hacktool.Win32.Elevate.J
Alibaba	Exploit:Win32/BypassUAC.51febb64
Cybereason	malicious.ab62c1
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	Win32/HackTool.Elevate.J
APEX	Malicious
Kaspersky	Exploit.Win32.BypassUAC.plh
BitDefender	Trojan.GenericKD.44159736
NANO-Antivirus	Exploit.Win32.BypassUAC.hzuouj
MicroWorld-eScan	Trojan.GenericKD.44159736
Avast	Win32:Malware-gen
Rising	Trojan.Generic@AI.83 (RDMK:Yq2jpd9hzpgavwKErlPaUw)
Ad-Aware	Trojan.GenericKD.44159736
Emsisoft	Trojan.GenericKD.44159736 (B)
Comodo	Malware@#37y6xx6nvy79a
F-Secure	Trojan.TR/Spy.Agent.bcosr
VIPRE	Trojan.GenericKD.44159736
TrendMicro	TROJ_FRS.0NA103DL20
McAfee-GW-Edition	Artemis!Trojan
Trapmine	malicious.moderate.ml.score
Sophos	Mal/Generic-S
Avira	TR/Spy.Agent.bcosr
Antiy-AVL	Trojan[Exploit]/Win32.BypassUAC
Kingsoft	Win32.Troj.Generic_a.a.(kcloud)
Microsoft	Trojan:Win32/Occamy.C83
Arcabit	Trojan.Generic.D2A1D2F8
ZoneAlarm	Exploit.Win32.BypassUAC.plh
GData	Win32.Malware.Bucaspys.B
Google	Detected
AhnLab-V3	Malware/Win32.Generic.C2937333
VBA32	Exploit.BypassUAC
ALYac	Trojan.GenericKD.44159736
Malwarebytes	Generic.Malware/Suspicious
TrendMicro-HouseCall	TROJ_FRS.0NA103DL20
Tencent	Win32.Trojan.Spy.Szbj
Yandex	Trojan.GenAsa!LljW/i6Y9j0
Ikarus	Malware.Win32.Bucaspys
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	W32/BypassUAC.PLH!exploit
BitDefenderTheta	Gen:NN.ZexaF.34606.muW@aitGztli
AVG	Win32:Malware-gen
Panda	Trj/GdSda.A

How to remove Win32/HackTool.Elevate.J?

Win32/HackTool.Elevate.J removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X