Should I remove “IL:Trojan.MSILZilla.11286”?

The IL:Trojan.MSILZilla.11286 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What IL:Trojan.MSILZilla.11286 virus can do?

CAPE extracted potentially suspicious content
Authenticode signature is invalid
Anomalous .NET characteristics

How to determine IL:Trojan.MSILZilla.11286?


File Info:
name: 4D03C9DAD50BC63CAABA.mlw
path: /opt/CAPEv2/storage/binaries/2061875eba3989bca2b5c46739a4a8bfc87629789655602c37ae60f28dc541c9
crc32: 05CB8D59
md5: 4d03c9dad50bc63caaba0ffd4e80e135
sha1: bc428e81f3526032a7ad78d8bd847645a9181f53
sha256: 2061875eba3989bca2b5c46739a4a8bfc87629789655602c37ae60f28dc541c9
sha512: 722c53ead98bd8e0b6e2a1f991245bb627d5fbaa1a5ad729f9423c43b27b76d18afed2789558699751039a97cfc48d827933f55246714d4c82691f157612395f
ssdeep: 96:qz7N/x3tD2VHn6/zWqx8qHcRCpmqQGKTaGM5SVZPgD8ggVv0b1ezmtk4/aDzNt6:wBZE5uWWt8qQGCaGMSs8ggVv0bQFRFk
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T13EF10B01B7E84732F8FA8B7D08B342214634FB869913CB6E6CD4035A8D2B6544992F77
sha3_384: 240c8fb1ce5fa26a750b5247c680d38adb8b7751957b033a5691d640a33d24fd044702658163f18563c720a4b5a8b0dd
ep_bytes: ff250020400000000000000000000000
timestamp: 2021-03-24 08:48:07

Version Info:
Translation: 0x0000 0x04b0
FileDescription:  
FileVersion: 0.0.0.0
InternalName: uig6e2K84n4TJJTdF1ldSAbw.exe
LegalCopyright:  
OriginalFilename: uig6e2K84n4TJJTdF1ldSAbw.exe
ProductVersion: 0.0.0.0
Assembly Version: 0.0.0.0

IL:Trojan.MSILZilla.11286 also known as:

Bkav	W32.AIDetectNet.01
Lionic	Trojan.MSIL.Stealer.l!c
DrWeb	Trojan.DownLoader38.10429
MicroWorld-eScan	IL:Trojan.MSILZilla.11286
FireEye	Generic.mg.4d03c9dad50bc63c
ALYac	IL:Trojan.MSILZilla.11286
Cylance	Unsafe
VIPRE	IL:Trojan.MSILZilla.11286
Sangfor	Trojan.Win32.Save.a
K7AntiVirus	Trojan-Downloader ( 005796c11 )
Alibaba	TrojanSpy:MSIL/Stealer.ccad50ab
K7GW	Trojan-Downloader ( 005796c11 )
Cybereason	malicious.ad50bc
BitDefenderTheta	Gen:NN.ZemsilF.34726.am0@aOvhr2d
Cyren	W32/MSIL_Kryptik.EHH.gen!Eldorado
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (high confidence)
ESET-NOD32	a variant of MSIL/TrojanDownloader.Small.CLF
APEX	Malicious
Paloalto	generic.ml
Kaspersky	HEUR:Trojan-Spy.MSIL.Stealer.gen
BitDefender	IL:Trojan.MSILZilla.11286
Avast	Win32:DropperX-gen [Drp]
Tencent	Msil.Trojan-Spy.Stealer.Ctgl
Ad-Aware	IL:Trojan.MSILZilla.11286
Emsisoft	IL:Trojan.MSILZilla.11286 (B)
Zillya	Downloader.Small.Win32.138225
McAfee-GW-Edition	BehavesLike.Win32.Generic.xt
Trapmine	malicious.moderate.ml.score
Sophos	Mal/Generic-S
SentinelOne	Static AI – Malicious PE
GData	IL:Trojan.MSILZilla.11286
Google	Detected
Avira	TR/Dldr.Small.yhigd
Antiy-AVL	Trojan/Generic.ASMalwS.3CE9
Arcabit	IL:Trojan.MSILZilla.D2C16
Microsoft	Trojan:Win32/Wacatac.B!ml
Cynet	Malicious (score: 100)
AhnLab-V3	Trojan/Win.Generic.C4386745
Acronis	suspicious
McAfee	Artemis!4D03C9DAD50B
MAX	malware (ai score=100)
Malwarebytes	Trojan.Downloader.MSIL.Generic
Rising	Trojan.IPLogger!1.B69D (CLASSIC)
Yandex	Trojan.DL.Small!3bzplCKcyTk
Ikarus	Trojan-Downloader.MSIL.Small
MaxSecure	Trojan.Malware.73709669.susgen
Fortinet	MSIL/Small.CLF!tr
AVG	Win32:DropperX-gen [Drp]
Panda	Trj/GdSda.A

How to remove IL:Trojan.MSILZilla.11286?

IL:Trojan.MSILZilla.11286 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X