What is “BScope.Trojan.MTA.01233”?

The BScope.Trojan.MTA.01233 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What BScope.Trojan.MTA.01233 virus can do?

Authenticode signature is invalid
Creates known Allaple worm mutexes
Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine BScope.Trojan.MTA.01233?


File Info:
name: B21F37B9CDFA858855C4.mlw
path: /opt/CAPEv2/storage/binaries/3082c72146679cc798752476f0e1cbdaee6cd7dc639ee7da9fb0795968782f14
crc32: 33B5D7D2
md5: b21f37b9cdfa858855c43e2415724d6c
sha1: 38a3fbcf351d88c10185c20aac81445ca59a113c
sha256: 3082c72146679cc798752476f0e1cbdaee6cd7dc639ee7da9fb0795968782f14
sha512: 367cdc475b33ff6e2dc01a369432fbbd5c2a7e6ad9a27b38429b6abe6c7966196d411ee578dfb3244dea909fcbfea5a232be3733baa146fae8fd5618fd2c4326
ssdeep: 3072:g/Pdl9o/KfWQeOCKWmgXGN69Z2mmpmRj:IlGQROZ2mK
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T17DB31871E253A426CC75053C974AE3FD8DECEA335704887B9BC8CE262DB4BA1DB12546
sha3_384: 4c909b4d2b6302c385c5e3ddafb1058212bdc6ae1b5f16b408ddb6a2df1260f86e7b6272be7ccea18b828dfc4d83df48
ep_bytes: e8eb0200006803800000e845090000e8
timestamp: 2006-11-28 21:04:54

Version Info:
0: [No Data]

BScope.Trojan.MTA.01233 also known as:

Lionic	Trojan.Win32.Eb.ts5c
Elastic	malicious (high confidence)
MicroWorld-eScan	Generic.Dacic.4254EF66.A.A2550686
FireEye	Generic.mg.b21f37b9cdfa8588
CAT-QuickHeal	Worm.Allaple.B4
Skyhigh	BehavesLike.Win32.ExploitDcomRpc.ch
ALYac	Generic.Dacic.4254EF66.A.A2550686
Malwarebytes	Generic.Malware.AI.DDS
VIPRE	Generic.Dacic.4254EF66.A.A2550686
Sangfor	Suspicious.Win32.Save.a
K7AntiVirus	Trojan ( 004e40051 )
Alibaba	Worm:Win32/Kolab.e8e7
K7GW	Trojan ( 004e40051 )
Cybereason	malicious.f351d8
Arcabit	Generic.Dacic.4254EF66.A.A2550686
Baidu	Win32.Worm.Rbot.a
VirIT	Backdoor.Win32.SdBot.AFCX
Symantec	W32.Spybot.Worm
ESET-NOD32	a variant of Win32/Allaple.NAC
APEX	Malicious
Cynet	Malicious (score: 100)
Kaspersky	Trojan.Win32.Eb.dgo
BitDefender	Generic.Dacic.4254EF66.A.A2550686
NANO-Antivirus	Trojan.Win32.Allaple.bgryk
Avast	Win32:Allaple-D [Trj]
Tencent	Trojan.Win32.Eb.ha
Sophos	Mal/IRCBot-B
F-Secure	Worm.WORM/Rbot.Gen
DrWeb	Trojan.Starman
TrendMicro	TROJ_GEN.R002C0CKK23
Emsisoft	Generic.Dacic.4254EF66.A.A2550686 (B)
SentinelOne	Static AI – Malicious PE
Jiangmin	Worm/Generic.zfq
Avira	WORM/Rbot.Gen
MAX	malware (ai score=84)
Antiy-AVL	Trojan[Backdoor]/Win32.Rbot
Kingsoft	malware.kb.a.1000
Xcitium	MalCrypt.Indus!@1qrzi1
Microsoft	Trojan:Win32/IRCBor.LK!MTB
ViRobot	Backdoor.Win32.A.Rbot.110592.AI
ZoneAlarm	Trojan.Win32.Eb.dgo
GData	Win32.Trojan.PSE1.C1KH17
Varist	W32/Allaple.I.gen!Eldorado
AhnLab-V3	Worm/Win32.Allaple.R34300
Acronis	suspicious
McAfee	Exploit-DcomRpc.c.gen
TACHYON	Trojan/W32.Eb.108544
VBA32	BScope.Trojan.MTA.01233
Cylance	unsafe
Panda	Trj/Genetic.gen
TrendMicro-HouseCall	TROJ_GEN.R002C0CKK23
Rising	Backdoor.IRCbot!8.B47 (TFE:2:CfLXO7FBrXI)
Yandex	Trojan.GenAsa!SsYPZlVWtgw
Ikarus	Backdoor.Win32.Allaple
Fortinet	W32/Allaple.NAC!worm
BitDefenderTheta	AI:Packer.59F6A7B91E
AVG	Win32:Allaple-D [Trj]
DeepInstinct	MALICIOUS
CrowdStrike	win/malicious_confidence_100% (W)

How to remove BScope.Trojan.MTA.01233?

BScope.Trojan.MTA.01233 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X