Malware

How to remove “Application.MSILPerseus.113704”?

Malware Removal

The Application.MSILPerseus.113704 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Application.MSILPerseus.113704 virus can do?

  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • Attempts to connect to a dead IP:Port (1 unique times)
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • Creates RWX memory
  • Guard pages use detected – possible anti-debugging.
  • Dynamic (imported) function loading detected
  • CAPE extracted potentially suspicious content
  • Authenticode signature is invalid

Related domains:

wpad.local-net

How to determine Application.MSILPerseus.113704?



File Info:

name: 91732DC4575E9C8093B2.mlw
path: /opt/CAPEv2/storage/binaries/832b08f5d656a62290bfe81b6508a744e8f9cfb22120233877a5720b7d9d9eb7
crc32: 730047C8
md5: 91732dc4575e9c8093b2a44e5287eb5f
sha1: 65c7ee2929d1ed58a35531161f82e4749b05279c
sha256: 832b08f5d656a62290bfe81b6508a744e8f9cfb22120233877a5720b7d9d9eb7
sha512: b35c8a6489a817fe2259098a89ce2a9399381dbd632ec8beb4dfab46d5b47d7bd871d70e0319c0a5848ea8f812fdcbedb400fbea69e92fcdcd202afc84822e80
ssdeep: 98304:SD89U3ie9wtI3SJD8lgiiDoFPbT1nOOerFPV8tb8TV:SD89U3L9xCJ1iTpbsAG
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T15B364916AE4C807AD65A71F05769AFB94565AD603B2052933231FE3CDC32393DE7B20E
sha3_384: 4e3f4ad8c244ab15f0e11657381b22b488ea7d7f3fac648fb218d92f7b6e4375d051eaafa1e4283059d7162a41023d0d
ep_bytes: ff250020400000000000000000000000
timestamp: 2018-07-14 19:36:27


Version Info:

Translation: 0x0000 0x04b0
Comments: 
CompanyName: 
FileDescription: 
FileVersion: 6.31.3.2
InternalName: IDM Universal Web Crack.exe
LegalCopyright: 
LegalTrademarks: 
OriginalFilename: IDM Universal Web Crack.exe
ProductName: 
ProductVersion: 6.31.3.2
Assembly Version: 6.31.3.2

Application.MSILPerseus.113704 also known as:

LionicRiskware.Win32.Perseus.1!c
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Application.MSILPerseus.113704
FireEyeGeneric.mg.91732dc4575e9c80
CAT-QuickHealTrojan.GenericFC.S6055691
McAfeeArtemis!91732DC4575E
CylanceUnsafe
SangforTrojan.Win32.Occamy.C83
K7AntiVirusRiskware ( 004cddc71 )
K7GWRiskware ( 004cddc71 )
Cybereasonmalicious.4575e9
BitDefenderThetaGen:NN.ZemsilF.34294.@p0@aKV!Juf
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of MSIL/Riskware.HackTool.Crack.A
TrendMicro-HouseCallTROJ_GEN.R002H0CKN21
BitDefenderGen:Variant.Application.MSILPerseus.113704
AvastWin32:Malware-gen
Ad-AwareGen:Variant.Application.MSILPerseus.113704
SophosCrackTool (PUA)
ComodoMalware@#35vd5lt5iws9w
VIPRETrojan.Win32.Generic!BT
McAfee-GW-EditionArtemis!PUP
EmsisoftGen:Variant.Application.MSILPerseus.113704 (B)
IkarusPUA.MSIL.Riskware
GDataGen:Variant.Application.MSILPerseus.113704
WebrootW32.Malware.Gen
GridinsoftRansom.Win32.Occamy.sa
ArcabitTrojan.Application.MSILPerseus.D1BC28
MicrosoftTrojan:Win32/Occamy.C83
AhnLab-V3Unwanted/Win32.RL_HackTool.C4345430
ALYacGen:Variant.Application.MSILPerseus.113704
MalwarebytesRiskWare.HackTool
APEXMalicious
TencentMsil.Risk.Riskware.Hrol
YandexRiskware.HackTool!v1HO1mdPph8
SentinelOneStatic AI – Malicious PE
FortinetRiskware/HackTool_Crack
AVGWin32:Malware-gen
PandaTrj/Downloader.SOP
MaxSecureTrojan.Malware.73632803.susgen

How to remove Application.MSILPerseus.113704?

Application.MSILPerseus.113704 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment