Trojan

MSIL/TrojanDownloader.Agent.HPA malicious file

Malware Removal

The MSIL/TrojanDownloader.Agent.HPA is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What MSIL/TrojanDownloader.Agent.HPA virus can do?

  • Presents an Authenticode digital signature

How to determine MSIL/TrojanDownloader.Agent.HPA?



File Info:

crc32: 5286DA87
md5: ed7e552c7241ef049dad13295b13321f
name: ED7E552C7241EF049DAD13295B13321F.mlw
sha1: d90421b88cf1baf1c1a55ba71a81a886eede26a3
sha256: 5719740e2e46073095cfb08ed7c0d397a7e76dda4047749b7ea0cb4ab47150a5
sha512: fb0544f426c65616ffcaf235cbade5d2e037981664e6c66e39fe3e80ca7945f9051d12b1dc7769000b0a0520c1041ffa5fd83523623347ea8ec2021d9e43f6bd
ssdeep: 1536:nFVCx2eZqDP1z/iJo4W4knTUGzVxCsDJIueVES:nF8x2eZqDPZp
type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows


Version Info:

LegalCopyright: All Rights Reserved
Assembly Version: 8.501.394.65
InternalName: x332ex332cx3334x3348x3334x3326x3335x334dx3344x3354x3338x3350x3355x3325x3355x3323x3350x3357x3352x3354x3346x3342x334dx3332x3325x3342x3336x334ax3344x3327x3355x3326x3329x3335x332dx3323x3355x3325x333bx3323x3327x3356x333ax3334x3359.exe
FileVersion: 8.501.394.65
CompanyName: x332ex332cx3334x3348x3334x3326x3335x334dx3344x3354x3338x3350x3355x3325x3355x3323x3350x3357x3352x3354x3346x3342x334dx3332x3325x3342x3336x334ax3344x3327x3355x3326x3329x3335x332dx3323x3355x3325x333bx3323x3327x3356x333ax3334x3359 Inc.
LegalTrademarks: x332ex332cx3334x3348x3334x3326x3335x334dx3344x3354x3338x3350x3355x3325x3355x3323x3350x3357x3352x3354x3346x3342x334dx3332x3325x3342x3336x334ax3344x3327x3355x3326x3329x3335x332dx3323x3355x3325x333bx3323x3327x3356x333ax3334x3359
Comments: x332ex332cx3334x3348x3334x3326x3335x334dx3344x3354x3338x3350x3355x3325x3355x3323x3350x3357x3352x3354x3346x3342x334dx3332x3325x3342x3336x334ax3344x3327x3355x3326x3329x3335x332dx3323x3355x3325x333bx3323x3327x3356x333ax3334x3359
ProductName: x332ex332cx3334x3348x3334x3326x3335x334dx3344x3354x3338x3350x3355x3325x3355x3323x3350x3357x3352x3354x3346x3342x334dx3332x3325x3342x3336x334ax3344x3327x3355x3326x3329x3335x332dx3323x3355x3325x333bx3323x3327x3356x333ax3334x3359
ProductVersion: 8.501.394.65
FileDescription: x332ex332cx3334x3348x3334x3326x3335x334dx3344x3354x3338x3350x3355x3325x3355x3323x3350x3357x3352x3354x3346x3342x334dx3332x3325x3342x3336x334ax3344x3327x3355x3326x3329x3335x332dx3323x3355x3325x333bx3323x3327x3356x333ax3334x3359
OriginalFilename: x332ex332cx3334x3348x3334x3326x3335x334dx3344x3354x3338x3350x3355x3325x3355x3323x3350x3357x3352x3354x3346x3342x334dx3332x3325x3342x3336x334ax3344x3327x3355x3326x3329x3335x332dx3323x3355x3325x333bx3323x3327x3356x333ax3334x3359.exe
Translation: 0x0000 0x0514

MSIL/TrojanDownloader.Agent.HPA also known as:

K7AntiVirusTrojan-Downloader ( 005795c51 )
Elasticmalicious (high confidence)
DrWebTrojan.DownLoader37.58326
CylanceUnsafe
SangforTrojan.Win32.Save.a
CrowdStrikewin/malicious_confidence_70% (W)
AlibabaTrojan:MSIL/PowerShell.638f7008
K7GWTrojan-Downloader ( 005795c51 )
CyrenW32/MSIL_Kryptik.DNK.gen!Eldorado
ESET-NOD32a variant of MSIL/TrojanDownloader.Agent.HPA
APEXMalicious
AvastWin32:Trojan-gen
KasperskyHEUR:Trojan.MSIL.PowerShell.gen
BitDefenderTrojan.GenericKD.45920575
ViRobotTrojan.Win32.Z.Wacatac.114520
MicroWorld-eScanTrojan.GenericKD.45920575
Ad-AwareTrojan.GenericKD.45920575
SophosMal/Generic-S
BitDefenderThetaGen:NN.ZemsilF.34628.gm1@aGAq0kni
McAfee-GW-EditionArtemis!Trojan
FireEyeGeneric.mg.ed7e552c7241ef04
EmsisoftTrojan.GenericKD.45920575 (B)
WebrootW32.Trojan.Gen
KingsoftWin32.Heur.KVM019.a.(kcloud)
MicrosoftTrojan:Win32/Wacatac.B!ml
ArcabitTrojan.Generic.D2BCB13F
ZoneAlarmHEUR:Trojan.MSIL.PowerShell.gen
GDataTrojan.GenericKD.45920575
McAfeeArtemis!ED7E552C7241
MAXmalware (ai score=84)
TrendMicro-HouseCallTROJ_GEN.F0D1C00CI21
TencentMsil.Trojan.Powershell.Amwc
SentinelOneStatic AI – Suspicious PE
FortinetW32/Malicious_Behavior.SBX
AVGWin32:Trojan-gen

How to remove MSIL/TrojanDownloader.Agent.HPA?

MSIL/TrojanDownloader.Agent.HPA removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment