Win64/HackTool.RoguePotato.A information

The Win64/HackTool.RoguePotato.A is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Win64/HackTool.RoguePotato.A virus can do?

The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid

How to determine Win64/HackTool.RoguePotato.A?


File Info:
name: 97333109EEBE9C369B89.mlw
path: /opt/CAPEv2/storage/binaries/dcca4ad925574a357b83e58afe6d7d3474be49f0b234b02260578884c883f63b
crc32: CA6FED5F
md5: 97333109eebe9c369b899b28a93d96df
sha1: b2bc074782154d33a3967cf66aa88d17be6b5dc9
sha256: dcca4ad925574a357b83e58afe6d7d3474be49f0b234b02260578884c883f63b
sha512: 0a2e58939afcb87df7089560ba12ebda4370bd71901789afc3c65c4259a0bf06cdbe49dcb08b62d44de050206c9fa934ab42ccb6e6ef4c15a109157a5086090c
ssdeep: 1536:687sq5RXqjXhlh5t+RNw7Ykx8fTNCBp/k14ZzRu:vv51qjHPtKIYfTkBp/k14L
type: PE32+ executable (console) x86-64, for MS Windows
tlsh: T1BEF3B62532550CF6D9A2C13B9D868399EDB07842033D95EF524186E9DF723E8BF38B91
sha3_384: 9450c0b6732c93c978af8b859a15fe43a221b243b3067459b05e177c1759cfe4e3123efba3cd7332b90df26830a97bf6
ep_bytes: e9f3ee0000e9021d0100e9b9030100e9
timestamp: 2021-12-10 12:27:50

Version Info:
0: [No Data]

Win64/HackTool.RoguePotato.A also known as:

Lionic	Trojan.Win32.Generic.4!c
MicroWorld-eScan	Trojan.GenericKD.38246159
FireEye	Generic.mg.97333109eebe9c36
CAT-QuickHeal	Trojan.IGENERIC
McAfee	Artemis!97333109EEBE
Cylance	Unsafe
Zillya	Tool.RoguePotato.Win64.33
K7AntiVirus	Trojan ( 00566ef31 )
Alibaba	HackTool:Win64/RoguePotato.839e7094
K7GW	Trojan ( 00566ef31 )
Symantec	Trojan.Gen.MBT
ESET-NOD32	a variant of Win64/HackTool.RoguePotato.A
APEX	Malicious
BitDefender	Trojan.GenericKD.38246159
Avast	Win64:Trojan-gen
Ad-Aware	Trojan.GenericKD.38246159
Emsisoft	Trojan.GenericKD.38246159 (B)
McAfee-GW-Edition	Artemis!Trojan
Sophos	Mal/Generic-S
GData	Trojan.GenericKD.38246159
Gridinsoft	Ransom.Win64.Sabsik.sa
Microsoft	Trojan:Win32/Sabsik.FL.B!ml
MAX	malware (ai score=84)
Yandex	Riskware.RoguePotato!gceWH9uzFSg
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	W64/RoguePotato.A!tr
AVG	Win64:Trojan-gen

How to remove Win64/HackTool.RoguePotato.A?

Win64/HackTool.RoguePotato.A removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X