Worm

BScope.Worm.MSIL.Agent malicious file

Malware Removal

The BScope.Worm.MSIL.Agent is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What BScope.Worm.MSIL.Agent virus can do?

  • Authenticode signature is invalid
  • CAPE detected the shellcode get eip malware family
  • Yara detections observed in process dumps, payloads or dropped files

How to determine BScope.Worm.MSIL.Agent?



File Info:

name: 2B9FA227F2B456A82971.mlw
path: /opt/CAPEv2/storage/binaries/fa1d04bf8cd1586ab6afc81bfdb0dddfd3cf14cad394878b40120b8a546f9029
crc32: 45F0D36C
md5: 2b9fa227f2b456a8297137c51ffb8166
sha1: f4b5f505a085bfc385c41bb307ede6aa80747db3
sha256: fa1d04bf8cd1586ab6afc81bfdb0dddfd3cf14cad394878b40120b8a546f9029
sha512: bd35c72d064d842c65b460fc2fcd24f19860331c8a00f2a2884499d3ecc661ecf22326835017117b1806502400b36ec04b58997d50c6255db1ca2439a94aa0a7
ssdeep: 12288:UPvvnXc3ajG+hjQKymY8efKCpD7Gj9G6G1qT8nQkCu83L3Wl/np9DBDt3kbE:UPHsqjnhMgeiCl7G0nehbGZpbD
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1037512A2F3D85085F5378E7289B8D8258C3BBDAE9C708C0E6396355E55B26D04938F37
sha3_384: 075c2744c4b7d57bb5da8d143687c2621cd7efcf214a90996d4f74ac11cb9a68190811a4d157dd19b15e45a3601c1307
ep_bytes: e87b050000e97afeffff558bec56ff75
timestamp: 2020-12-09 13:25:31


Version Info:

CompanyName: Oracle Corporation
FileDescription: Java Control Panel
FileVersion: 11.281.2.09
Full Version: 11.281.2.09
InternalName: Java Control Panel
LegalCopyright: Copyright © 2020
OriginalFilename: javacpl.exe
ProductName: Java(TM) Platform SE 8 U281
ProductVersion: 8.0.2810.9
Translation: 0x0409 0x04b0

BScope.Worm.MSIL.Agent also known as:

BkavW32.AIDetectMalware
LionicVirus.Win32.Expiro.n!c
DrWebWin32.Expiro.158
MicroWorld-eScanWin32.Expiro.Gen.7
FireEyeGeneric.mg.2b9fa227f2b456a8
CAT-QuickHealW32.Expiro.R3
SkyhighBehavesLike.Win32.Sality.tt
McAfeeArtemis!2B9FA227F2B4
Cylanceunsafe
SangforTrojan.Win32.Save.a
K7AntiVirusVirus ( 005a8b911 )
AlibabaVirus:Win32/Expiro.9fe18251
K7GWVirus ( 005a8b911 )
CrowdStrikewin/malicious_confidence_100% (D)
VirITWin32.Expiro.CX
SymantecW32.Xpiro.J!dam
ElasticWindows.Virus.Expiro
ESET-NOD32Win32/Expiro.NDO
APEXMalicious
KasperskyVirus.Win32.Moiva.a
BitDefenderWin32.Expiro.Gen.7
NANO-AntivirusVirus.Win32.Virut-Gen.bwpxnc
AvastFileRepMalware [Inf]
TencentVirus.Win32.VirMoiva.a
SophosW32/Moiva-A
F-SecureMalware.W32/Infector.Gen
VIPREWin32.Expiro.Gen.7
TrendMicroVirus.Win32.EXPIRO.JMA
Trapminesuspicious.low.ml.score
EmsisoftWin32.Expiro.Gen.7 (B)
SentinelOneStatic AI – Malicious PE
GoogleDetected
AviraW32/Infector.Gen
VaristW32/Expiro.AU.gen!Eldorado
Antiy-AVLVirus/Win32.Expiro.x
MicrosoftVirus:Win32/Expiro.AA!MTB
ArcabitWin32.Expiro.Gen.7
ZoneAlarmVirus.Win32.Moiva.a
GDataWin32.Trojan.BSE.1EU2C1H
CynetMalicious (score: 100)
AhnLab-V3Virus/Win.Expiro.X2164
Acronissuspicious
VBA32BScope.Worm.MSIL.Agent
ALYacWin32.Expiro.Gen.7
MAXmalware (ai score=84)
MalwarebytesVirus.M0yv
PandaW32/Moyv.A
RisingTrojan.Generic@AI.83 (RDML:NRbHcdSWw9GDIj8vgEm8SQ)
IkarusVirus.Win32.Expiro
MaxSecureTrojan.Malware.121218.susgen
FortinetW32/FileInfector.C!tr
AVGFileRepMalware [Inf]
Cybereasonmalicious.7f2b45
DeepInstinctMALICIOUS
alibabacloudVirus:Win/Expiro.A

How to remove BScope.Worm.MSIL.Agent?

BScope.Worm.MSIL.Agent removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment