Categories: Malware

What is “Generic.MSIL.PasswordStealerA.5D16F224”?

The Generic.MSIL.PasswordStealerA.5D16F224 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Generic.MSIL.PasswordStealerA.5D16F224 virus can do?

Authenticode signature is invalid
CAPE detected the QuasarStealer malware family

How to determine Generic.MSIL.PasswordStealerA.5D16F224?


File Info:
name: 0CB72CEF6BEB956FF378.mlwpath: /opt/CAPEv2/storage/binaries/855d78f916d26ef3303105a9df70bbc86c1477bfae22ea64d564fe7f6361d900crc32: 528630DBmd5: 0cb72cef6beb956ff378b646c35a9247sha1: e18bd599a4a5e173fbbbdc65cd87feba53cf9dc5sha256: 855d78f916d26ef3303105a9df70bbc86c1477bfae22ea64d564fe7f6361d900sha512: fc95ae72076f38743a63a0274e9fe2c71f5b4cf90e7f90c3780537bf1d1c4d4b8ac9f134470512b2c9d37e4cb3ec33eae64331da6babeee6dcc1a381077cd58essdeep: 49152:tvkt62XlaSFNWPjljiFa2RoUYIEy4NlNloGd9fTHHB72eh2NTVTqrm:tv462XlaSFNWPjljiFXRoUYIEy4NlTPtype: PE32 executable (GUI) Intel 80386, for MS Windowstlsh: T1E8F55A003BF85E62E16AD77395B0541663F1FC2AF363EB0B258176BA1D73B5088427A7sha3_384: b7afef702058f7c4ff345bb604b3f06e3403f09447ad5bd566273dfac228c6f0acf12fb7718eafdd3a217d0808e2f550ep_bytes: ff250020400000000000000000000000timestamp: 2023-03-12 16:16:39
Version Info:
Translation: 0x0000 0x04b0Comments: CompanyName: F4SE TeamFileDescription: The Fallout 4 Script Extender, or F4SE for short, is a modder's resource that expands the scripting capabilities of Fallout 4. It does so without modifying the executable files on disk, so there are no permanent side effects. FileVersion: 1.2.1.2InternalName: F4SE_LoaderLegalCopyright: F4SE TeamLegalTrademarks: F4SE TeamOriginalFilename: F4SE_LoaderProductName: Fallout 4 Script ExtenderProductVersion: 1.2.1.2Assembly Version: 1.2.1.2

Generic.MSIL.PasswordStealerA.5D16F224 also known as:

Bkav	W32.AIDetectMalware.CS
MicroWorld-eScan	Generic.MSIL.PasswordStealerA.5D16F224
CAT-QuickHeal	Trojan.Generic.TRFH927
Skyhigh	GenericRXLX-DS!0CB72CEF6BEB
McAfee	GenericRXLX-DS!0CB72CEF6BEB
Cylance	unsafe
VIPRE	Generic.MSIL.PasswordStealerA.5D16F224
Sangfor	Suspicious.Win32.Save.a
Arcabit	Generic.MSIL.PasswordStealerA.5D16F224
VirIT	Trojan.Win32.MSIL_Heur.B
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (high confidence)
ESET-NOD32	a variant of MSIL/Agent.CLQ
Cynet	Malicious (score: 100)
APEX	Malicious
ClamAV	Win.Malware.Generic-9883083-0
Kaspersky	HEUR:Trojan.MSIL.Quasar.gen
BitDefender	Generic.MSIL.PasswordStealerA.5D16F224
Avast	MSIL:Quasar-A [Rat]
Rising	Backdoor.Quasar!1.E5F1 (CLASSIC)
Emsisoft	Generic.MSIL.PasswordStealerA.5D16F224 (B)
F-Secure	Heuristic.HEUR/AGEN.1365341
DrWeb	BackDoor.QuasarNET.3
FireEye	Generic.mg.0cb72cef6beb956f
SentinelOne	Static AI – Malicious PE
Jiangmin	Trojan.MSIL.aogzw
Varist	W32/MSIL_Troj.BTX.gen!Eldorado
Avira	HEUR/AGEN.1365341
MAX	malware (ai score=87)
Antiy-AVL	Trojan/MSIL.Quasar
Microsoft	Backdoor:MSIL/Quasar!atmn
ZoneAlarm	HEUR:Trojan.MSIL.Quasar.gen
GData	MSIL.Backdoor.Quasar.A
Google	Detected
AhnLab-V3	Backdoor/Win32.QuasarRAT.R341693
BitDefenderTheta	Gen:NN.ZemsilF.36608.rp0@aaY0lJh
ALYac	Generic.MSIL.PasswordStealerA.5D16F224
VBA32	Trojan.MSIL.Quasar.Heur
Malwarebytes	Backdoor.Quasar
Tencent	Trojan.MSIL.Quasar.ka
Ikarus	Trojan-Spy.Agent
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	MSIL/Agent.BPH!tr
AVG	MSIL:Quasar-A [Rat]
DeepInstinct	MALICIOUS
CrowdStrike	win/malicious_confidence_100% (D)