The Backdoor:MSIL/Aataki.A is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.
What Backdoor:MSIL/Aataki.A virus can do?
File Info:
name: 7582D36404F896A57973.mlwpath: /opt/CAPEv2/storage/binaries/b6042844aeab2cd84264689867a985fdb9f162290fcd186a885d00e98ba840becrc32: F4D4D760md5: 7582d36404f896a579739ee6ee7b1b0bsha1: e11b9b4b3d50ccaac8210337697179a84ffd70f1sha256: b6042844aeab2cd84264689867a985fdb9f162290fcd186a885d00e98ba840besha512: 208a62f12372101d1eaf9cfbce15f5a1b3ae0fcecccf32b671c4affddeeda0aca7bec2ba7820925d84a1711ed036445f5af48a4ed681c056356950331bd702a5ssdeep: 6144:fH+ukuXqDw1hSXP0xaNle8zsfhZIKFKN8pmN:B7G5Pe8zsFg84Ntype: PE32 executable (GUI) Intel 80386, for MS Windowstlsh: T10C64E05833C84721F4BE1AFE51321405D7B2BC12DA22E3CCAF9570B9296B781CF45AA7sha3_384: 23c310d1a03f92e8cfb7119d8f7a317eebba7138b111db0b27b49c673d4ef1e8bafd0766fd449c5b20156fed26c8eee2ep_bytes: ff250020400000000000000000000000timestamp: 2022-11-21 11:30:28Version Info:
Translation: 0x0000 0x04b0FileDescription: ApplicationFileVersion: 1.0.0.0InternalName: appli.exeLegalCopyright: Copyright © 2019OriginalFilename: appli.exeProductName: ApplicationProductVersion: 1.0.0.0Assembly Version: 1.0.0.0
Lionic | Trojan.Win32.Generic.4!c |
Elastic | malicious (high confidence) |
DrWeb | Trojan.Siggen20.39959 |
MicroWorld-eScan | Generic.MSIL.DownloaderB.5C166CD4 |
ClamAV | Win.Trojan.Generic-6295774-0 |
FireEye | Generic.mg.7582d36404f896a5 |
McAfee | Artemis!7582D36404F8 |
Malwarebytes | Spyware.AutoRun |
Zillya | Worm.AutoRun.Win32.177 |
Sangfor | Suspicious.Win32.Save.a |
K7AntiVirus | Trojan ( 00309b371 ) |
Alibaba | Backdoor:MSIL/Aataki.4abb0c40 |
K7GW | Trojan ( 00309b371 ) |
Cybereason | malicious.404f89 |
BitDefenderTheta | Gen:NN.ZemsilF.36196.tm1@auitkPp |
Cyren | W32/ABRisk.OADE-0905 |
Symantec | ML.Attribute.HighConfidence |
ESET-NOD32 | a variant of MSIL/Autorun.Spy.Agent.R |
APEX | Malicious |
Cynet | Malicious (score: 99) |
Kaspersky | HEUR:Trojan.Win32.Generic |
BitDefender | Generic.MSIL.DownloaderB.5C166CD4 |
NANO-Antivirus | Trojan.Win32.Autorun.jvxaqa |
Avast | MSIL:KillAV-B [Trj] |
Tencent | Win32.Trojan.Generic.Eplw |
Emsisoft | Generic.MSIL.DownloaderB.5C166CD4 (B) |
F-Secure | Trojan.TR/Spy.Gen |
VIPRE | Generic.MSIL.DownloaderB.5C166CD4 |
TrendMicro | TROJ_GEN.R002C0DDN23 |
McAfee-GW-Edition | Artemis!Trojan |
Sophos | Mal/MSIL-AW |
SentinelOne | Static AI – Malicious PE |
GData | MSIL.Malware.Bucaspys.A |
Avira | TR/Spy.Gen |
MAX | malware (ai score=85) |
Antiy-AVL | Trojan[Backdoor]/MSIL.Aataki |
Arcabit | Generic.MSIL.DownloaderB.5C166CD4 |
ZoneAlarm | HEUR:Trojan.Win32.Generic |
Microsoft | Backdoor:MSIL/Aataki.A |
Detected | |
AhnLab-V3 | Malware/Win.Generic.C5316295 |
VBA32 | Trojan.MSIL.Buts.gen |
ALYac | Generic.MSIL.DownloaderB.5C166CD4 |
Cylance | unsafe |
Panda | Trj/GdSda.A |
TrendMicro-HouseCall | TROJ_GEN.R002C0DDN23 |
Rising | Backdoor.Aataki!8.2BF (TFE:C:NUiQ1AvzawK) |
Ikarus | Virus.Worm.MSIL |
MaxSecure | Trojan.Malware.7164915.susgen |
Fortinet | W32/Filecoder.FC5B!tr.ransom |
AVG | MSIL:KillAV-B [Trj] |
DeepInstinct | MALICIOUS |
CrowdStrike | win/malicious_confidence_100% (W) |
The Trojan.Win32.Agent.xbmkrx is considered dangerous by lots of security experts. When this infection is active,…
The Tedy.179306 is considered dangerous by lots of security experts. When this infection is active,…
The MSIL/GenKryptik.GXCC is considered dangerous by lots of security experts. When this infection is active,…
The Malware.AI.641344743 is considered dangerous by lots of security experts. When this infection is active,…
The Malware.AI.2427035797 is considered dangerous by lots of security experts. When this infection is active,…
The Win32/AutoRun.VB.TP is considered dangerous by lots of security experts. When this infection is active,…