Should I remove “HackTool:MSIL/Keygen”?

The HackTool:MSIL/Keygen is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What HackTool:MSIL/Keygen virus can do?

CAPE extracted potentially suspicious content
The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid

How to determine HackTool:MSIL/Keygen?


File Info:
name: 3A00458E53E383E7E5F5.mlw
path: /opt/CAPEv2/storage/binaries/d8bb306a3de43f275f3bb8710ec675f922d7c2d61b4648fa720f83cb14cbbb1f
crc32: 4B880756
md5: 3a00458e53e383e7e5f50b2d56ee81db
sha1: 2e5e63186efa48a9082960a273ccd12a68691480
sha256: d8bb306a3de43f275f3bb8710ec675f922d7c2d61b4648fa720f83cb14cbbb1f
sha512: 9aca953408a4de48369ff6a1a7b59a807f0c11c90042f79aefeecc06627f40b957b386c3791cdd747f1b02529701886ca3b46e2be4a52d029530692c3b0a547a
ssdeep: 768:SVsERnbvL0/CCOLwROXv4tl84tVsERnbvL0p:bERnbDjpLAOX06FERnbD2
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1F3033B6AA3B4E67FD97F3E7C842215D80AB0F9939E27EF8E28D1614F1A730454701E91
sha3_384: 8439157462b81dc8234942613df89a3d221fe791bfc13ae519760616d21202b08859a9ade10476079b389b5e92d79079
ep_bytes: ff250020400000000000000000000000
timestamp: 2011-12-02 05:32:13

Version Info:
Translation: 0x0000 0x04b0
Comments: Bijoy Ekattor 2012 Keygen
CompanyName: Kagukantho
FileDescription: Bijoy Ekattor 2012 Keygen
FileVersion: 1.0.0.0
InternalName: BijoyCrack.exe
LegalCopyright: Copyright ©  2011 Kagukantho
OriginalFilename: BijoyCrack.exe
ProductName: Bijoy Ekattor 2012 Keygen
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

HackTool:MSIL/Keygen also known as:

Bkav	W32.Common.CB96870C
Lionic	Trojan.Win32.Keygen.4!c
MicroWorld-eScan	Gen:Variant.MSILPerseus.129331
FireEye	Gen:Variant.MSILPerseus.129331
CAT-QuickHeal	Hacktool.Keygen
Skyhigh	RDN/Generic PUP.z
McAfee	RDN/Generic PUP.z
Cylance	unsafe
Zillya	Adware.Yotoon.Win32.7205
K7AntiVirus	Unwanted-Program ( 004d38111 )
K7GW	Unwanted-Program ( 004d38111 )
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	MSIL/Keygen.I potentially unsafe
APEX	Malicious
BitDefender	Gen:Variant.MSILPerseus.129331
Avast	Win32:Malware-gen
Emsisoft	Gen:Variant.MSILPerseus.129331 (B)
VIPRE	Gen:Variant.MSILPerseus.129331
TrendMicro	TROJ_GEN.R002C0PA924
Sophos	CrackTool (PUA)
GData	Gen:Variant.MSILPerseus.129331
Webroot	W32.Malware.Heur
Google	Detected
Antiy-AVL	Trojan/Win32.Generic
Kingsoft	malware.kb.c.990
Xcitium	Malware@#ypr9elx9z3c3
Arcabit	Trojan.MSILPerseus.D1F933
Microsoft	HackTool:MSIL/Keygen
Cynet	Malicious (score: 100)
ALYac	Gen:Variant.MSILPerseus.129331
Malwarebytes	Malware.AI.4048957268
Panda	Trj/GdSda.A
TrendMicro-HouseCall	TROJ_GEN.R002C0PA924
Rising	Trojan.Wacatac!8.10C01 (CLOUD)
Yandex	PUP.Agent!jBuntRgiOgM
Ikarus	Trojan.MSIL.Surveyer
MaxSecure	Trojan.Malware.7164915.susgen
Fortinet	Riskware/PUP
AVG	Win32:Malware-gen
DeepInstinct	MALICIOUS

How to remove HackTool:MSIL/Keygen?

HackTool:MSIL/Keygen removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X