Malware

Win32/PSW.OnLineGames.NNS information

Malware Removal

The Win32/PSW.OnLineGames.NNS is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Win32/PSW.OnLineGames.NNS virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Sample contains Overlay data
  • Reads data out of its own binary image
  • CAPE extracted potentially suspicious content
  • Drops a binary and executes it
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • Authenticode signature is invalid
  • Uses Windows utilities for basic functionality
  • Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine Win32/PSW.OnLineGames.NNS?



File Info:

name: 3B8455E5C3963C11E5BD.mlw
path: /opt/CAPEv2/storage/binaries/0f491dd4ce53334bb551a2c1300e3bd531402ed4ebd0db2613fdb80a634ada1e
crc32: A1B1909D
md5: 3b8455e5c3963c11e5bd3df7044fd6bb
sha1: 9bfc60173e7be79cd063d364bc239a8b51037b24
sha256: 0f491dd4ce53334bb551a2c1300e3bd531402ed4ebd0db2613fdb80a634ada1e
sha512: a85071ac040b7c4fc017ddb12658d8fe3f4bda8e29829eaa6467b0a75db22fb375fc356914e11d6212702cf566b7a26cf44ca3b656eefeccb972177d45ff40ba
ssdeep: 3072:JDjC0QU+iJntmWPBx8pZ8OJk5ps/w+pJ2v9RngC8kjOqZWVrdGrVUOY1xWl4g4et:JDjC09NcWMZtJC79v9ZLXyaWpkrVUO9z
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T18B04F11AF780C472CC04467049ED63BAD179EA31BF54E04FCB969DAF5C78282752AAD3
sha3_384: 87666f132ad205a4ed3012a0f6cd643bcdc3217044d43236120ac737bfa7994b10b1f009f5b77a5ccae575c81128fb87
ep_bytes: e8db27000050e8b7a200000000000090
timestamp: 2007-05-22 04:59:18


Version Info:

0: [No Data]

Win32/PSW.OnLineGames.NNS also known as:

BkavW32.AIDetectMalware
LionicTrojan.Win32.Generic.4!c
DrWebTrojan.KeyLogger.37201
MicroWorld-eScanGenPack:Trojan.PWS.OnlineGames.SSE
ClamAVWin.Downloader.39641-1
FireEyeGenPack:Trojan.PWS.OnlineGames.SSE
McAfeeArtemis!3B8455E5C396
MalwarebytesMalware.Heuristic.1001
ZillyaTrojan.OnLineGames.Win32.128731
SangforTrojan.Win32.Ren.Gen
K7AntiVirusTrojan-Downloader ( 000431531 )
AlibabaTrojanPSW:Win32/Gamania.f352a5f4
K7GWTrojan-Downloader ( 000431531 )
BitDefenderThetaAI:Packer.6059DA8C21
CyrenW32/Downloader.TLQG-8146
SymantecTrojan.Gen.MBT
Elasticmalicious (high confidence)
ESET-NOD32a variant of Win32/PSW.OnLineGames.NNS
APEXMalicious
CynetMalicious (score: 99)
KasperskyUDS:DangerousObject.Multi.Generic
BitDefenderGenPack:Trojan.PWS.OnlineGames.SSE
NANO-AntivirusTrojan.Win32.Gamania.cwommh
AvastWin32:Malware-gen
EmsisoftGenPack:Trojan.PWS.OnlineGames.SSE (B)
F-SecureTrojan.TR/Patched.Ren.Gen
VIPREGenPack:Trojan.PWS.OnlineGames.SSE
TrendMicroTSPY_ONLINEG.BAD
McAfee-GW-EditionBehavesLike.Win32.Generic.cc
SophosMal/ZipMal-A
GDataGenPack:Trojan.PWS.OnlineGames.SSE
JiangminTrojanDownloader.Banload.rpa
AviraTR/Patched.Ren.Gen
MAXmalware (ai score=89)
Antiy-AVLTrojan/Win32.AGeneric
XcitiumMalware@#4ckms87ms1uk
ArcabitGenPack:Trojan.PWS.OnlineGames.SSE
ZoneAlarmUDS:DangerousObject.Multi.Generic
MicrosoftPWS:Win32/Gamania.gen!D
GoogleDetected
Acronissuspicious
VBA32BScope.Dropper.Gen.5
ALYacGenPack:Trojan.PWS.OnlineGames.SSE
Cylanceunsafe
PandaTrj/CI.A
TrendMicro-HouseCallTSPY_ONLINEG.BAD
RisingTrojan.Helpud!8.D0E (TFE:2:2CFSFV3AtSR)
YandexTrojan.DL.Banload!OGGcI9qdz54
IkarusVirus.Win32.QQPass
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/PEMask.A!tr
AVGWin32:Malware-gen
DeepInstinctMALICIOUS

How to remove Win32/PSW.OnLineGames.NNS?

Win32/PSW.OnLineGames.NNS removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment