Trojan

IL:Trojan.MSILZilla.12144 removal instruction

Malware Removal

The IL:Trojan.MSILZilla.12144 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What IL:Trojan.MSILZilla.12144 virus can do?

  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • Dynamic (imported) function loading detected
  • CAPE extracted potentially suspicious content
  • Authenticode signature is invalid
  • Binary compilation timestomping detected

How to determine IL:Trojan.MSILZilla.12144?



File Info:

name: 4D7A53A128ACEE38E1DE.mlw
path: /opt/CAPEv2/storage/binaries/a7e2215bc7bdd678396067d9fdd0335d577d2ba883da38aaf7a9f9bca1e10916
crc32: EFE0C331
md5: 4d7a53a128acee38e1de380b1e3214f8
sha1: 2d7080662ae91efadbf7578314f6e9f5224908d7
sha256: a7e2215bc7bdd678396067d9fdd0335d577d2ba883da38aaf7a9f9bca1e10916
sha512: 450ee6ddf106e0fc8db6333b6c4ea41afcddebff5bff1bf5698e3faeb4a567023d20266de694644c9c8ae9c4a46f7b0b6f6186418ebb8048804523bf05083b75
ssdeep: 24576:AGFep6r/rlmi1jUhTJkNWB+72rsgxSCU5TeiH2J:zco/rlfC0WfhTGTei2
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T17DB56C01F7E6DB63D62D4B7A90B2092047F3D109F763E78B61202AA91D473D82E561FB
sha3_384: ef2b402e8a764178165593b4a0dd74d0439adda31123d333810824b83f5c2f1abc493850f2cc6c4f15347c27c9ee3927
ep_bytes: ff250020400000000000000000000000
timestamp: 2066-04-05 04:05:25


Version Info:

Translation: 0x0000 0x04b0
Comments: 
CompanyName: 
FileDescription: WindowsApp30
FileVersion: 1.0.0.0
InternalName: WindowsApp30.exe
LegalCopyright: Copyright ©  2021
LegalTrademarks: 
OriginalFilename: WindowsApp30.exe
ProductName: WindowsApp30
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

IL:Trojan.MSILZilla.12144 also known as:

LionicTrojan.Win32.Zilla.4!c
MicroWorld-eScanIL:Trojan.MSILZilla.12144
FireEyeIL:Trojan.MSILZilla.12144
ALYacIL:Trojan.MSILZilla.12144
Cybereasonmalicious.62ae91
Paloaltogeneric.ml
CynetMalicious (score: 100)
BitDefenderIL:Trojan.MSILZilla.12144
AvastWin32:Malware-gen
Ad-AwareIL:Trojan.MSILZilla.12144
EmsisoftIL:Trojan.MSILZilla.12144 (B)
McAfee-GW-EditionArtemis!Trojan
IkarusTrojan.IL.MSILZilla
GDataIL:Trojan.MSILZilla.12144
GridinsoftRansom.Win32.Sabsik.sa
ArcabitIL:Trojan.MSILZilla.D2F70
MicrosoftTrojan:Win32/Wacatac.B!ml
McAfeeGenericRXRB-YX!4D7A53A128AC
MAXmalware (ai score=89)
MalwarebytesTrojan.Injector.MSIL
TrendMicro-HouseCallTROJ_GEN.R002H09L921
SentinelOneStatic AI – Malicious PE
FortinetMalicious_Behavior.SB
AVGWin32:Malware-gen

How to remove IL:Trojan.MSILZilla.12144?

IL:Trojan.MSILZilla.12144 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment