Risk

What is “Win64/Riskware.Mimikatz.D”?

Malware Removal

The Win64/Riskware.Mimikatz.D is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Win64/Riskware.Mimikatz.D virus can do?

    How to determine Win64/Riskware.Mimikatz.D?

    

    File Info:
    
crc32: CC4B6DA4
    md5: 274b3c51f644ea400ce02ca40d980ac3
    name: 274B3C51F644EA400CE02CA40D980AC3.mlw
    sha1: 739c98e73f72b8067598f74101e3ea4e08521099
    sha256: cf25b435fafd421fcee508142cac746019215ab35e76a77bf9a7e7a8fd77f614
    sha512: a1f6db26ebcead5ddeb9b7b2d2182bf6b19a919c9e7a8189c6ef62833a279aa7386520d4d065fe8efb63273aee58834b221566d2f32c2d41774330d3befb1d1d
    ssdeep: 24576:HsGvAhU7t+OSk0rhGp4QjLqynab7x5rIw7unQXTi/K:JvkEuhGp4OL5ab7x5rIwQyT
    type: PE32+ executable (console) x86-64, for MS Windows
    

    Version Info:
    
LegalCopyright: Copyright (c) 2007 - 2020 gentilkiwi (Benjamin DELPY)
    InternalName: mnbv
    FileVersion: 2.2.0.0
    CompanyName: gentilkiwi (Benjamin DELPY)
    PrivateBuild: Build with love for POC only
    ProductName: mnbv
    SpecialBuild: :)
    ProductVersion: 2.2.0.0
    FileDescription: mnbv for Windows
    OriginalFilename: mnbv.exe
    Translation: 0x0409 0x04b0

    Win64/Riskware.Mimikatz.D also known as:

    Elasticmalicious (high confidence)
    DrWebTool.Mimikatz.1013
    CynetMalicious (score: 100)
    ALYacGen:Heur.Mimikatz.1
    CrowdStrikewin/malicious_confidence_80% (D)
    Cybereasonmalicious.1f644e
    CyrenW64/Mimikatz.G.gen!Eldorado
    ESET-NOD32a variant of Win64/Riskware.Mimikatz.D
    APEXMalicious
    AvastWin64:Malware-gen
    ClamAVWin.Trojan.Mimikatz-6466236-0
    KasperskyHEUR:Trojan-PSW.Win64.Mimikatz.gen
    BitDefenderGen:Heur.Mimikatz.1
    MicroWorld-eScanGen:Heur.Mimikatz.1
    Ad-AwareGen:Heur.Mimikatz.1
    SophosTroj/Mimkatz-T
    TrendMicroHKTL_MIMIKATZ64
    McAfee-GW-EditionBehavesLike.Win64.Rootkit.th
    FireEyeGeneric.mg.274b3c51f644ea40
    EmsisoftGen:Heur.Mimikatz.1 (B)
    SentinelOneStatic AI – Malicious PE
    eGambithacktool.mimikatz
    MicrosoftProgram:Win32/Wacapew.C!ml
    ArcabitTrojan.Mimikatz.1
    GDataGen:Heur.Mimikatz.1
    AhnLab-V3Trojan/Win64.Mimikatz.R285461
    Acronissuspicious
    McAfeeHTool-MimiKatz!274B3C51F644
    MAXmalware (ai score=83)
    MalwarebytesGeneric.Trojan.Malicious.DDS
    PandaHackingTool/Mimikatz
    TrendMicro-HouseCallHKTL_MIMIKATZ64
    RisingMalware.Strealer!8.1EF (TFE:dGZlOgXOSrRRXdqKUw)
    IkarusPUA.RiskWare.Mimikatz
    FortinetRiskware/Mimikatz
    AVGWin64:Malware-gen

    How to remove Win64/Riskware.Mimikatz.D?

    Win64/Riskware.Mimikatz.D removal tool
    • Download and install GridinSoft Anti-Malware.
    • Open GridinSoft Anti-Malware and perform a “Standard scan“.
    • Move to quarantine” all items.
    • Open “Tools” tab – Press “Reset Browser Settings“.
    • Select proper browser and options – Click “Reset”.
    • Restart your computer.

    You may also like

    About the author

    Paul Valéry

    I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

    View all posts

    Leave a Comment