Should I remove “Win32/ParanoidFish.A potentially unsafe”?

The Win32/ParanoidFish.A potentially unsafe is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Win32/ParanoidFish.A potentially unsafe virus can do?

SetUnhandledExceptionFilter detected (possible anti-debug)
The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid

How to determine Win32/ParanoidFish.A potentially unsafe?


File Info:
name: AC52A89F0F495B5D2445.mlw
path: /opt/CAPEv2/storage/binaries/66562fa29a018e0010505231fe1e822e36b624f65a6fd5ce81eb0030b9956508
crc32: A5635715
md5: ac52a89f0f495b5d2445800675d27158
sha1: 52c517f5a5bcf027cfd0cf4f758c3a74951f6101
sha256: 66562fa29a018e0010505231fe1e822e36b624f65a6fd5ce81eb0030b9956508
sha512: 14e6601838afafb2546002dc75d3b55ea4e1773b648929552ab5c6b34f537463ec05226a1d9d567365434f4a25048ab038849c9c60e467830302289ad7c69ca0
ssdeep: 1536:IUUkQK25Tshw7iB6kLbehG3lJJqBwwwYgzoze8av:IUUkQK25Tse66EeU3lT8wwwYmKe/v
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T10ED34B09FA83C8F5EB2715B418DFD2BF9534BE019C129D5AEB883B66FC32E4D6905118
sha3_384: c4f3cb9e78d9a1ef0c5589fad58a159ca07b16e1862210c5f8f7b6c5f0811ee2da6f7929c4d13cc7cf549bd02435ae55
ep_bytes: c7057030410000000000e9a1fcffff90
timestamp: 2021-12-02 13:02:57

Version Info:
CompanyName: Kirill
FileVersion: 1.0
FileDescription: kpi_re_lab_3
InternalName: Hello Kitty
LegalCopyright: Copyright (C) 2021 Kirill
LegalTrademarks: 
OriginalFilename: hellokitty.exe
ProductName: Kitty
ProductVersion: 1.0
Translation: 0x0409 0x04e4

Win32/ParanoidFish.A potentially unsafe also known as:

Bkav	W32.AIDetect.malware1
Lionic	Adware.Win32.Maskit.2!c
FireEye	Generic.mg.ac52a89f0f495b5d
McAfee	GenericRXQZ-AV!AC52A89F0F49
Cylance	Unsafe
K7AntiVirus	Unwanted-Program ( 00533c1b1 )
Alibaba	AdWare:Win32/ParanoidFish.d4c36cc5
K7GW	Unwanted-Program ( 00533c1b1 )
Cybereason	malicious.5a5bcf
BitDefenderTheta	Gen:NN.ZexaF.34062.iO0@a0zSpGhi
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win32/ParanoidFish.A potentially unsafe
APEX	Malicious
Kaspersky	not-a-virus:HEUR:AdWare.Win32.Maskit.gen
BitDefender	Trojan.GenericKD.47540785
MicroWorld-eScan	Trojan.GenericKD.47540785
Avast	Win32:MiscX-gen [PUP]
Ad-Aware	Trojan.GenericKD.47540785
Sophos	Generic PUA FC (PUA)
Zillya	Adware.Maskit.Win32.62
TrendMicro	TROJ_GEN.R002C0WL521
McAfee-GW-Edition	BehavesLike.Win32.Dropper.cm
Emsisoft	Trojan.GenericKD.47540785 (B)
Jiangmin	AdWare.Maskit.ap
Microsoft	Trojan:Win32/Sabsik.TE.B!ml
Arcabit	Trojan.Generic.D2D56A31
GData	Trojan.GenericKD.47540785
AhnLab-V3	Malware/Win.Generic.R456201
VBA32	Adware.Maskit
MAX	malware (ai score=82)
TrendMicro-HouseCall	TROJ_GEN.R002C0WL521
Yandex	PUA.Maskit!zw2mkcyc5lM
Fortinet	Riskware/ParanoidFish
AVG	Win32:MiscX-gen [PUP]
Panda	Trj/GdSda.A

How to remove Win32/ParanoidFish.A potentially unsafe?

Win32/ParanoidFish.A potentially unsafe removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X