What is “IL:Trojan.MSILZilla.12048”?

The IL:Trojan.MSILZilla.12048 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What IL:Trojan.MSILZilla.12048 virus can do?

Dynamic (imported) function loading detected
Authenticode signature is invalid
Anomalous .NET characteristics
Binary compilation timestomping detected

How to determine IL:Trojan.MSILZilla.12048?


File Info:
name: C4C68B385C068FB2D430.mlw
path: /opt/CAPEv2/storage/binaries/b3fc6790b9e4fc4aaa31b63f90a9b1749a5afe27d462ad60e2ef955048eafa5c
crc32: DC6B8622
md5: c4c68b385c068fb2d430c04bc556362d
sha1: 1263f25feb139ac51d7985ee8c34b042476525d7
sha256: b3fc6790b9e4fc4aaa31b63f90a9b1749a5afe27d462ad60e2ef955048eafa5c
sha512: 787f14d69898b1e7cb1e16469a71feacfeee4da9cf08e5498c297d1d0d48e98892dde3dd7781aa80ed8222b57d9e6f1967ef5b3868362c20b95645c4f0920691
ssdeep: 48:61aH80QecChkWf6NMavCNhWafJowNPSIFyoylq7VaW6qDpfbNtm:b/QDhvK3owxYqVrzNt
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T13FB1C61297E84777EE770B35ACB35740067CFB618D279B1E28C8E29B3E126144E62B71
sha3_384: 5afb207ba1e1dc7516508a80055b52064dffa3dcc77814040267fe3eba7b4e0e8985ceddb33cceeae6110ef4a552d7fd
ep_bytes: ff250020400000000000000000000000
timestamp: 2042-07-23 17:12:22

Version Info:
Translation: 0x0000 0x04b0
Comments: sudf uwrwr rr
CompanyName: 
FileDescription: jyuugh
FileVersion: 0.0.0.0
InternalName: ConsoleApp4.exe
LegalCopyright: Copyright ©  2021
LegalTrademarks: MArgo
OriginalFilename: ConsoleApp4.exe
ProductName: Cuntrp42
ProductVersion: 0.0.0.0
Assembly Version: 0.0.0.0

IL:Trojan.MSILZilla.12048 also known as:

Lionic	Trojan.MSIL.Fsysna.4!c
MicroWorld-eScan	IL:Trojan.MSILZilla.12048
FireEye	IL:Trojan.MSILZilla.12048
ALYac	IL:Trojan.MSILZilla.12048
Zillya	Trojan.Fsysna.Win32.22897
Sangfor	Suspicious.Win32.Malware.gen
BitDefender	IL:Trojan.MSILZilla.12048
Symantec	ML.Attribute.HighConfidence
TrendMicro-HouseCall	TROJ_GEN.R011C0WLD21
Paloalto	generic.ml
Kaspersky	HEUR:Trojan.MSIL.Fsysna.gen
Alibaba	Trojan:MSIL/Fsysna.71b320de
Ad-Aware	IL:Trojan.MSILZilla.12048
Emsisoft	IL:Trojan.MSILZilla.12048 (B)
TrendMicro	TROJ_GEN.R011C0WLD21
McAfee-GW-Edition	Artemis!Trojan
Sophos	Generic PUA BC (PUA)
Jiangmin	Trojan.MSIL.alrfj
Avira	TR/Dropper.Gen2
MAX	malware (ai score=80)
Gridinsoft	Ransom.Win32.Sabsik.sa
Microsoft	Trojan:Win32/Mamson.A!ac
GData	IL:Trojan.MSILZilla.12048
Cynet	Malicious (score: 99)
AhnLab-V3	Trojan/Win.Generic.C4839959
McAfee	Artemis!C4C68B385C06
VBA32	TScope.Trojan.MSIL
Panda	Trj/CI.A
Tencent	Msil.Trojan.Fsysna.Szle
Ikarus	Trojan.Dropper
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	PossibleThreat
AVG	Win32:Malware-gen
Cybereason	malicious.feb139
Avast	Win32:Malware-gen

How to remove IL:Trojan.MSILZilla.12048?

IL:Trojan.MSILZilla.12048 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X