Malware

What is “Generic.MSIL.PasswordStealerA.5D16F224”?

Malware Removal

The Generic.MSIL.PasswordStealerA.5D16F224 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Generic.MSIL.PasswordStealerA.5D16F224 virus can do?

  • Authenticode signature is invalid
  • CAPE detected the QuasarStealer malware family

How to determine Generic.MSIL.PasswordStealerA.5D16F224?



File Info:

name: 0CB72CEF6BEB956FF378.mlw
path: /opt/CAPEv2/storage/binaries/855d78f916d26ef3303105a9df70bbc86c1477bfae22ea64d564fe7f6361d900
crc32: 528630DB
md5: 0cb72cef6beb956ff378b646c35a9247
sha1: e18bd599a4a5e173fbbbdc65cd87feba53cf9dc5
sha256: 855d78f916d26ef3303105a9df70bbc86c1477bfae22ea64d564fe7f6361d900
sha512: fc95ae72076f38743a63a0274e9fe2c71f5b4cf90e7f90c3780537bf1d1c4d4b8ac9f134470512b2c9d37e4cb3ec33eae64331da6babeee6dcc1a381077cd58e
ssdeep: 49152:tvkt62XlaSFNWPjljiFa2RoUYIEy4NlNloGd9fTHHB72eh2NTVTqrm:tv462XlaSFNWPjljiFXRoUYIEy4NlTP
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1E8F55A003BF85E62E16AD77395B0541663F1FC2AF363EB0B258176BA1D73B5088427A7
sha3_384: b7afef702058f7c4ff345bb604b3f06e3403f09447ad5bd566273dfac228c6f0acf12fb7718eafdd3a217d0808e2f550
ep_bytes: ff250020400000000000000000000000
timestamp: 2023-03-12 16:16:39


Version Info:

Translation: 0x0000 0x04b0
Comments: 
CompanyName: F4SE Team
FileDescription: The Fallout 4 Script Extender, or F4SE for short, is a modder's resource that expands the scripting capabilities of Fallout 4. It does so without modifying the executable files on disk, so there are no permanent side effects. 
FileVersion: 1.2.1.2
InternalName: F4SE_Loader
LegalCopyright: F4SE Team
LegalTrademarks: F4SE Team
OriginalFilename: F4SE_Loader
ProductName: Fallout 4 Script Extender
ProductVersion: 1.2.1.2
Assembly Version: 1.2.1.2

Generic.MSIL.PasswordStealerA.5D16F224 also known as:

BkavW32.AIDetectMalware.CS
MicroWorld-eScanGeneric.MSIL.PasswordStealerA.5D16F224
CAT-QuickHealTrojan.Generic.TRFH927
SkyhighGenericRXLX-DS!0CB72CEF6BEB
McAfeeGenericRXLX-DS!0CB72CEF6BEB
Cylanceunsafe
VIPREGeneric.MSIL.PasswordStealerA.5D16F224
SangforSuspicious.Win32.Save.a
ArcabitGeneric.MSIL.PasswordStealerA.5D16F224
VirITTrojan.Win32.MSIL_Heur.B
SymantecML.Attribute.HighConfidence
Elasticmalicious (high confidence)
ESET-NOD32a variant of MSIL/Agent.CLQ
CynetMalicious (score: 100)
APEXMalicious
ClamAVWin.Malware.Generic-9883083-0
KasperskyHEUR:Trojan.MSIL.Quasar.gen
BitDefenderGeneric.MSIL.PasswordStealerA.5D16F224
AvastMSIL:Quasar-A [Rat]
RisingBackdoor.Quasar!1.E5F1 (CLASSIC)
EmsisoftGeneric.MSIL.PasswordStealerA.5D16F224 (B)
F-SecureHeuristic.HEUR/AGEN.1365341
DrWebBackDoor.QuasarNET.3
FireEyeGeneric.mg.0cb72cef6beb956f
SentinelOneStatic AI – Malicious PE
JiangminTrojan.MSIL.aogzw
VaristW32/MSIL_Troj.BTX.gen!Eldorado
AviraHEUR/AGEN.1365341
MAXmalware (ai score=87)
Antiy-AVLTrojan/MSIL.Quasar
MicrosoftBackdoor:MSIL/Quasar!atmn
ZoneAlarmHEUR:Trojan.MSIL.Quasar.gen
GDataMSIL.Backdoor.Quasar.A
GoogleDetected
AhnLab-V3Backdoor/Win32.QuasarRAT.R341693
BitDefenderThetaGen:NN.ZemsilF.36608.rp0@aaY0lJh
ALYacGeneric.MSIL.PasswordStealerA.5D16F224
VBA32Trojan.MSIL.Quasar.Heur
MalwarebytesBackdoor.Quasar
TencentTrojan.MSIL.Quasar.ka
IkarusTrojan-Spy.Agent
MaxSecureTrojan.Malware.300983.susgen
FortinetMSIL/Agent.BPH!tr
AVGMSIL:Quasar-A [Rat]
DeepInstinctMALICIOUS
CrowdStrikewin/malicious_confidence_100% (D)

How to remove Generic.MSIL.PasswordStealerA.5D16F224?

Generic.MSIL.PasswordStealerA.5D16F224 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment