Trojan

IL:Trojan.MSILMamut.273 removal instruction

Malware Removal

The IL:Trojan.MSILMamut.273 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware - Review 2020

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
6-day free trial available.

What IL:Trojan.MSILMamut.273 virus can do?

  • Dynamic (imported) function loading detected
  • CAPE extracted potentially suspicious content
  • Authenticode signature is invalid

How to determine IL:Trojan.MSILMamut.273?


File Info:

name: 5ED8A056B7D61246C8F1.mlw
path: /opt/CAPEv2/storage/binaries/a1b94619ae8b1de8965aba1dea4b782d465ebe7db33adb86d60ba6f501075305
crc32: 84A3DB20
md5: 5ed8a056b7d61246c8f158d4cd952f48
sha1: de09f31e20fe53a09d9e884faa796ab1ffe67d01
sha256: a1b94619ae8b1de8965aba1dea4b782d465ebe7db33adb86d60ba6f501075305
sha512: 5aa97e93c07ed53e3c67367f55775e7f86ac6b553c961cb95ecd9312fe3d5dbb2ba0045e626f690e60fe02ec465520f3e72104c679fcc8e65c4aa04d5f152db4
ssdeep: 192:3cKhaM+rEaDgvg/S9CPf0U/u/aE89b0UT7FBzu0ghD4L:Mr5mES8PMb/aB9b0OBa9k
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1C1221811ABE84B7ADF7F8A7D58B7971151B37B149826CE0F8DC9C04E1E237801952FA2
sha3_384: 7134f6aba4770287afed526c74bb8336bd5c105b1fd13e41a94a47b2b501afb6be6e1f4d8bb12e7a900b0f58155adc08
ep_bytes: ff250020400000000000000000000000
timestamp: 2022-05-07 11:53:12

Version Info:

Translation: 0x0000 0x04b0
Comments: Opera auto-updater
CompanyName: Opera Software
FileDescription: Opera Software
FileVersion: 87.0.100.60
InternalName: 001154.exe
LegalCopyright: Copyright Opera Software 2022
OriginalFilename: 001154.exe
ProductName: Opera Software
ProductVersion: 87.0.100.60
Assembly Version: 87.0.100.60

IL:Trojan.MSILMamut.273 also known as:

BkavW32.AIDetectNet.01
ClamAVWin.Packed.Clipbanker-9776642-0
CAT-QuickHealTrojan.MsilFC.S15905051
McAfeeClipBanker-FCNX!5ED8A056B7D6
K7AntiVirusTrojan ( 700000121 )
BitDefenderIL:Trojan.MSILMamut.273
K7GWTrojan ( 700000121 )
CyrenW32/ClipBanker.M.gen!Eldorado
Elasticmalicious (high confidence)
ESET-NOD32a variant of MSIL/ClipBanker.LR
APEXMalicious
CynetMalicious (score: 99)
KasperskyHEUR:Trojan.MSIL.Agent.gen
MicroWorld-eScanIL:Trojan.MSILMamut.273
RisingSpyware.ClipBanker!1.D058 (CLASSIC)
Ad-AwareIL:Trojan.MSILMamut.273
EmsisoftIL:Trojan.MSILMamut.273 (B)
F-SecureHeuristic.HEUR/AGEN.1202562
DrWebTrojan.PWS.Siggen.31367
TrendMicroTrojanSpy.MSIL.CLIPBANKER.SM
McAfee-GW-EditionBehavesLike.Win32.Generic.lt
FireEyeGeneric.mg.5ed8a056b7d61246
SophosML/PE-A
SentinelOneStatic AI – Malicious PE
GDataMSIL.Trojan.ClipBanker.F
AviraHEUR/AGEN.1202562
ArcabitIL:Trojan.MSILMamut.273
MicrosoftTrojan:MSIL/ClipBanker
AhnLab-V3Malware/Win32.RL_Generic.C3622627
Acronissuspicious
ALYacIL:Trojan.MSILMamut.273
MAXmalware (ai score=84)
MalwarebytesSpyware.ClipboardStealer.Generic
TrendMicro-HouseCallTrojanSpy.MSIL.CLIPBANKER.SM
IkarusTrojan.MSIL.ClipBanker
MaxSecureTrojan.Malware.300983.susgen
FortinetMSIL/ClipBanker.MZ!tr
BitDefenderThetaGen:NN.ZemsilF.34638.am0@amTAyNj
AVGWin32:DropperX-gen [Drp]
Cybereasonmalicious.6b7d61
AvastWin32:DropperX-gen [Drp]

How to remove IL:Trojan.MSILMamut.273?

IL:Trojan.MSILMamut.273 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment