Malware

Generic.MSIL.PasswordStealerA.D1459B77 removal tips

Malware Removal

The Generic.MSIL.PasswordStealerA.D1459B77 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Generic.MSIL.PasswordStealerA.D1459B77 virus can do?

  • Dynamic (imported) function loading detected
  • Authenticode signature is invalid
  • CAPE detected the BotSh1zoid malware family
  • Binary compilation timestomping detected

How to determine Generic.MSIL.PasswordStealerA.D1459B77?



File Info:

name: C04DBCFBB2FDA4E3A055.mlw
path: /opt/CAPEv2/storage/binaries/9d086e3fc5b9a6fafd99275e5bf6266cece716444d290f3e2b5e3c8cffe9b321
crc32: 60CE31C3
md5: c04dbcfbb2fda4e3a0555432a8d8b2ca
sha1: 5bb39656549ce65fbda7124937474441961455a3
sha256: 9d086e3fc5b9a6fafd99275e5bf6266cece716444d290f3e2b5e3c8cffe9b321
sha512: 230bc7d3466544e779ccd1be6ca269f9edc582702e4b80f2770c56805e4d4a8dec22d075c9820ad6bac64a54b553a484fac8690361b8974a54bcff3c22aeb993
ssdeep: 49152:ztMjfGZK7avSzz6GryitbQz4gftdky4b5HIkvfq3:hMKZK7aazzpryitInR
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T18CD54A1437FC1E23D1BE96B281B0515297F0FC29B363EBAB2581A7799C13B506D422B7
sha3_384: f7afc8d7f5adc8f8cbbc750145a990ea84693d4bcdb7948e5150ca0b3dcec06ee7bf98348a6d4841deb650ae7508371d
ep_bytes: ff250020400000000000b71dc1046e3b
timestamp: 2101-06-12 18:56:26


Version Info:

Translation: 0x0000 0x04b0
Comments: 
CompanyName: 
FileDescription: gosgo
FileVersion: 1.0.0.0
InternalName: ReadLineS0SAT.exe
LegalCopyright: Copyright ©  2020
LegalTrademarks: 
OriginalFilename: ReadLineS0SAT.exe
ProductName: sgsf
ProductVersion: 1.0.0.0
Assembly Version: 1.1.1.0

Generic.MSIL.PasswordStealerA.D1459B77 also known as:

LionicTrojan.Win32.Generic.4!c
MicroWorld-eScanDeepScan:Generic.MSIL.PasswordStealerA.D1459B77
FireEyeGeneric.mg.c04dbcfbb2fda4e3
ALYacDeepScan:Generic.MSIL.PasswordStealerA.D1459B77
MalwarebytesSpyware.PasswordStealer
K7AntiVirusSpyware ( 004bf53c1 )
AlibabaTrojan:MSIL/REDLINESTEALER.a7ea295e
K7GWSpyware ( 004bf53c1 )
Cybereasonmalicious.bb2fda
ArcabitDeepScan:Generic.MSIL.PasswordStealerA.D1459B77
ESET-NOD32a variant of MSIL/Spy.Agent.AES
APEXMalicious
Paloaltogeneric.ml
ClamAVWin.Packed.Passwordstealera-6872839-0
KasperskyHEUR:Trojan.Win32.Generic
BitDefenderDeepScan:Generic.MSIL.PasswordStealerA.D1459B77
AvastWin32:Trojan-gen
RisingStealer.Agent!1.D483 (CLASSIC)
Ad-AwareDeepScan:Generic.MSIL.PasswordStealerA.D1459B77
SophosMal/Generic-S
DrWebTrojan.PWS.StealerNET.74
TrendMicroTrojan.MSIL.REDLINESTEALER.SMTH
McAfee-GW-EditionGenericRXQU-LU!C04DBCFBB2FD
EmsisoftDeepScan:Generic.MSIL.PasswordStealerA.D1459B77 (B)
SentinelOneStatic AI – Malicious PE
JiangminTrojan.MSIL.unas
AviraTR/Spy.Agent.pgzgt
Antiy-AVLTrojan/Generic.ASMalwS.34D68E3
MicrosoftTrojan:Win32/Sabsik.FL.B!ml
ViRobotTrojan.Win32.Z.Passwordstealera.2827776.C
GDataDeepScan:Generic.MSIL.PasswordStealerA.D1459B77
CynetMalicious (score: 100)
AhnLab-V3Trojan/Win.Generic.C4780202
McAfeeGenericRXQU-LU!C04DBCFBB2FD
MAXmalware (ai score=100)
VBA32Malware-Cryptor.MSIL.AgentTesla.Heur
CylanceUnsafe
TencentWin32.Trojan.Generic.Suxh
IkarusTrojan.MSIL.Spy
eGambitTrojan.Generic
FortinetMSIL/Agent.AES!tr
AVGWin32:Trojan-gen
PandaTrj/GdSda.A
CrowdStrikewin/malicious_confidence_100% (W)
MaxSecureTrojan.Malware.121218.susgen

How to remove Generic.MSIL.PasswordStealerA.D1459B77?

Generic.MSIL.PasswordStealerA.D1459B77 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment