Backdoor Spy

Backdoor:MSIL/SpyGate.DCC!MTB information

Malware Removal

The Backdoor:MSIL/SpyGate.DCC!MTB is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
6-day free trial available.

What Backdoor:MSIL/SpyGate.DCC!MTB virus can do?

  • Network activity detected but not expressed in API logs

How to determine Backdoor:MSIL/SpyGate.DCC!MTB?


File Info:

crc32: 4F47D723
md5: abd5a435f1eca3e4f999bb82b6560eb4
name: ABD5A435F1ECA3E4F999BB82B6560EB4.mlw
sha1: 09159564e60dfad903279fbd50e591b867eed7e4
sha256: 1a2a96929291f09ea53d7cfa9cf579443fdf3f8472e4a890da2412f0ee1ee3d1
sha512: 894de12ae0c7fb57c3fbc29fe0a7562666293205c41f95f2ca7699d0626f9ad1180bb58e1d14a3b605417cabf33462dca8239ccc4bdfdaa4cf852ba6d5c35868
ssdeep: 12288:Hh0wIKrTa5kYKvBIE+SH6vwoNKirvFi1jZtzf:B0lKrTl
type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows

Version Info:

Translation: 0x0000 0x04b0
LegalCopyright: Copyright xa9 Microsoft 2018
Assembly Version: 1.0.0.0
InternalName: Windows.exe
FileVersion: 1.0.0.0
CompanyName: Microsoft
ProductName: Windows
ProductVersion: 1.0.0.0
FileDescription: Windows
OriginalFilename: Windows.exe

Backdoor:MSIL/SpyGate.DCC!MTB also known as:

K7AntiVirusTrojan ( 004ce3151 )
LionicTrojan.MSIL.Disfa.4!c
Elasticmalicious (high confidence)
DrWebTrojan.PackedNET.248
ClamAVWin.Packed.Bladabindi-7082976-0
ALYacGen:Variant.Ursu.130124
CylanceUnsafe
ZillyaTrojan.Disfa.Win32.67063
SangforSuspicious.Win32.Save.a
CrowdStrikewin/malicious_confidence_90% (D)
AlibabaBackdoor:MSIL/Disfa.5d91d21c
K7GWTrojan ( 004ce3151 )
Cybereasonmalicious.5f1eca
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of MSIL/Kryptik.DLU
APEXMalicious
AvastWin32:Malware-gen
CynetMalicious (score: 99)
KasperskyTrojan.MSIL.Disfa.muxf
BitDefenderGen:Variant.Ursu.130124
NANO-AntivirusTrojan.Win32.Kryptik.exsqec
MicroWorld-eScanGen:Variant.Ursu.130124
TencentMsil.Trojan.Disfa.Lqor
Ad-AwareGen:Variant.Ursu.130124
SophosMal/Generic-S
ComodoMalware@#ei822jq5tz98
BitDefenderThetaGen:NN.ZemsilF.34236.@q0@aiOTSOk
VIPRETrojan.Win32.Generic!BT
McAfee-GW-EditionAgentTesla-FDAH!ABD5A435F1EC
FireEyeGeneric.mg.abd5a435f1eca3e4
EmsisoftGen:Variant.Ursu.130124 (B)
SentinelOneStatic AI – Malicious PE
AviraHEUR/AGEN.1111863
MicrosoftBackdoor:MSIL/SpyGate.DCC!MTB
GDataGen:Variant.Ursu.130124
AhnLab-V3Malware/Win32.RL_Generic.C3995749
McAfeeAgentTesla-FDAH!ABD5A435F1EC
MAXmalware (ai score=100)
MalwarebytesBackdoor.Bladabindi
PandaTrj/GdSda.A
IkarusTrojan.MSIL.Crypt
MaxSecureTrojan.Malware.300983.susgen
FortinetMSIL/Kryptik.DCC!tr
AVGWin32:Malware-gen
Paloaltogeneric.ml

How to remove Backdoor:MSIL/SpyGate.DCC!MTB?

Backdoor:MSIL/SpyGate.DCC!MTB removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment