Backdoor

What is “Backdoor:MSIL/AsyncRAT.X!MTB”?

Malware Removal

The Backdoor:MSIL/AsyncRAT.X!MTB is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Backdoor:MSIL/AsyncRAT.X!MTB virus can do?

  • Authenticode signature is invalid

How to determine Backdoor:MSIL/AsyncRAT.X!MTB?



File Info:

name: 6DD0C24926934571A65F.mlw
path: /opt/CAPEv2/storage/binaries/24ecba5b6040e377d908826fda71de9c7159e246ad00554efc0d5362f25b8d33
crc32: 57AB5728
md5: 6dd0c24926934571a65f3c8219825361
sha1: 318cffc1759e3d997b13d0fb8f3e452118ff95d0
sha256: 24ecba5b6040e377d908826fda71de9c7159e246ad00554efc0d5362f25b8d33
sha512: 40f76d6b27d0f27f1acbb30b2cce22904f53d7716329340eab5f224af5e70bdb3f5949f2016bb0eaeb8186b8b1a508a970fc0a773037e86e4d5270fa72ee5e1b
ssdeep: 3072:1ANaITUYUb1wXY6XrABexuMeJ60/MP6VgJ+CvkVz7MJesz:GTULbErnxK60/jgJxvkJ7OR
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1DA046C106AC8C903C21C6BB85DA3E77501BB8FE52A05D606ADD43CDF773EF866D111AA
sha3_384: aed0d627a890b4ed33cc4260cd96b6eb2e9b754c34977c03ef21ce3fcd81bc562e66dcd032d863e2534202e9470cb1be
ep_bytes: ff250020400000000000000000000000
timestamp: 2022-04-24 17:30:14


Version Info:

Translation: 0x0000 0x04b0
Comments: 
CompanyName: 
FileDescription: 
FileVersion: 0.0.0.0
InternalName: Arac
LegalCopyright: 
LegalTrademarks: 
OriginalFilename: Arac
ProductName: 
ProductVersion: 0.0.0.0
Assembly Version: 0.0.0.0

Backdoor:MSIL/AsyncRAT.X!MTB also known as:

LionicTrojan.Win32.Agent.Y!c
Elasticmalicious (high confidence)
MicroWorld-eScanGeneric.Dacic.1E3438B6.A.C5210975
FireEyeGeneric.mg.6dd0c24926934571
CAT-QuickHealBackdoor.MsilFC.S24737149
McAfeeGenericRXQL-LI!6DD0C2492693
Cylanceunsafe
SangforSuspicious.Win32.Save.a
CrowdStrikewin/malicious_confidence_100% (W)
AlibabaBackdoor:MSIL/AsyncRat.2f5bdbfb
K7GWTrojan ( 700000121 )
K7AntiVirusTrojan ( 700000121 )
VirITTrojan.Win32.MSIL_Heur.A
CyrenW32/Trojan.IML.gen!Eldorado
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of MSIL/Agent.CFQ
APEXMalicious
ClamAVWin.Packed.Razy-9807129-0
KasperskyHEUR:Trojan.MSIL.Agent.gen
BitDefenderGeneric.Dacic.1E3438B6.A.C5210975
ViRobotTrojan.Win.Z.Agent.185344.BK
AvastWin32:BackdoorX-gen [Trj]
TencentTrojan.MSIL.Agent.16000593
SophosTroj/AsyncRat-B
F-SecureHeuristic.HEUR/AGEN.1311730
DrWebBackDoor.AsyncRATNET.2
VIPREGeneric.Dacic.1E3438B6.A.C5210975
TrendMicroTROJ_GEN.R002C0DGJ23
McAfee-GW-EditionGenericRXQL-LI!6DD0C2492693
Trapminemalicious.moderate.ml.score
EmsisoftGeneric.Dacic.1E3438B6.A.C5210975 (B)
SentinelOneStatic AI – Malicious PE
GDataMSIL.Backdoor.DCRat.C
JiangminTrojanSpy.MSIL.cak
GoogleDetected
AviraHEUR/AGEN.1311730
ArcabitGeneric.Dacic.1E3438B6.A.C5210975
ZoneAlarmHEUR:Trojan.MSIL.Agent.gen
MicrosoftBackdoor:MSIL/AsyncRAT.X!MTB
CynetMalicious (score: 100)
AhnLab-V3Trojan/Win.Agent.C4386732
Acronissuspicious
BitDefenderThetaGen:NN.ZemsilF.36318.lm0@aOesQfp
ALYacGeneric.Dacic.1E3438B6.A.C5210975
MAXmalware (ai score=86)
VBA32Trojan.MSIL.DarkCrystal.Heur
MalwarebytesGeneric.Malware.AI.DDS
PandaTrj/GdSda.A
TrendMicro-HouseCallTROJ_GEN.R002C0DGJ23
RisingBackdoor.AsyncRAT!1.C3F4 (CLASSIC)
IkarusTrojan.MSIL.Agent
MaxSecureTrojan.Malware.300983.susgen
FortinetMSIL/Agent.CFQ!tr
AVGWin32:BackdoorX-gen [Trj]
DeepInstinctMALICIOUS

How to remove Backdoor:MSIL/AsyncRAT.X!MTB?

Backdoor:MSIL/AsyncRAT.X!MTB removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment