Malware

Should I remove “BrowserModifier:MSIL/MediaArena”?

Malware Removal

The BrowserModifier:MSIL/MediaArena is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What BrowserModifier:MSIL/MediaArena virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Sample contains Overlay data
  • Presents an Authenticode digital signature
  • CAPE extracted potentially suspicious content
  • Authenticode signature is invalid
  • Detects Bochs through the presence of a registry key
  • Collects information to fingerprint the system
  • Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine BrowserModifier:MSIL/MediaArena?



File Info:

name: F96A7783C66E4D765902.mlw
path: /opt/CAPEv2/storage/binaries/082a99013a6df16afd4e2597888bc23c3d7ead9fd9b44a752956249c5fba32b8
crc32: F5D28373
md5: f96a7783c66e4d765902d1b735bcce82
sha1: f448515826d609bb7bd268bea9e65f994f0d82b8
sha256: 082a99013a6df16afd4e2597888bc23c3d7ead9fd9b44a752956249c5fba32b8
sha512: 3cd0ba18aebe12332efe21f8250eb25699c9848440e247e510a330d0c4ee90de3b1387f0d090b12caebe09f7acdd2924b71118e96617707992d7547b9283b3ef
ssdeep: 49152:CT1CmkWZCHbDN9Wtau+aoqKMnU8aZCHbDN9Wtau+aoqKMnUBC1bum+LiyAkx8:CTIm7C8C
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T14816E064BFA0DA46C5BD03795963DD3827B0DE65B221DB8BD5D83D9B3E73B000C6122A
sha3_384: 3d4a47592d817cfa52ea7b3d04e55c7b48db47352d00cdd5364e0c51177beaebab1d9a5a9cad088c8d8437dcc58dec64
ep_bytes: ff257cb77e00000000000000000050b7
timestamp: 2023-01-24 10:37:09


Version Info:

Translation: 0x0000 0x04b0
Comments: PdfToDocPro
CompanyName: 
FileDescription: PdfToDocPro
FileVersion: 1.1.0.0
InternalName: PDFtoDocExe.exe
LegalCopyright: Copyright ©  2021
LegalTrademarks: 
OriginalFilename: PDFtoDocExe.exe
ProductName: PdfToDocPro
ProductVersion: 1.1.0.0
Assembly Version: 1.1.0.0

BrowserModifier:MSIL/MediaArena also known as:

Cylanceunsafe
K7AntiVirusAdware ( 005af4c61 )
K7GWAdware ( 005af4c61 )
ESET-NOD32a variant of MSIL/MediaArena.C potentially unwanted
DrWebAdware.Linkury.145
SophosGeneric Reputation PUA (PUA)
MicrosoftBrowserModifier:MSIL/MediaArena
GDataWin32.Application.Agent.O8K9JC
MalwarebytesPUP.Optional.MediaArena
RisingTrojan.MediaArena!8.183EA (CLOUD)
IkarusPUA.RiskWare.Hacktool
FortinetAdware/MediaArena
DeepInstinctMALICIOUS

How to remove BrowserModifier:MSIL/MediaArena?

BrowserModifier:MSIL/MediaArena removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment