Trojan

IL:Trojan.MSILZilla.12994 removal

Malware Removal

The IL:Trojan.MSILZilla.12994 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What IL:Trojan.MSILZilla.12994 virus can do?

  • Sample contains Overlay data
  • CAPE extracted potentially suspicious content
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid

How to determine IL:Trojan.MSILZilla.12994?



File Info:

name: 3133F8DEBBF7C89EF6FA.mlw
path: /opt/CAPEv2/storage/binaries/50384dee6c696464620ac97a8d0473708bf4cf881b9ed1573c705b6deb8f4494
crc32: AA65FE4B
md5: 3133f8debbf7c89ef6fab05f604db2a0
sha1: e5c6cd3aff85b83ebd21e09d238c515d9ae0e9fa
sha256: 50384dee6c696464620ac97a8d0473708bf4cf881b9ed1573c705b6deb8f4494
sha512: 0079e41a27401a7e4dfedcef20323cb9af602ad57c2a132e230de2ed220c9bbb36a8a17ccfc105cb000c6cd58cbfe8aed64811b6abe84f2b67110248bf154d34
ssdeep: 12288:hY5D1jww35VKCoELPfp0alEvVV2tklLlRaJEgruHtYT:WBB5VK1Ejx0YENV2ELj0
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T173E5370CFA1941A4E7D4D8753BA5EB1209E9BAD26C3E7686DE0B31D1D438AD0163E337
sha3_384: d12fbde641675906e653a479526a54cb7cb06e648374c5dd01fa93b66eeea1807554d5ef98992c20b930d52112cf3bc9
ep_bytes: ff250020400000000000000000000000
timestamp: 2018-10-13 20:01:39


Version Info:

Translation: 0x0000 0x04b0
Comments: HWMonitor
CompanyName: CPUID
FileDescription: CPUID Hardware Monitor
FileVersion: 1.3.5.0
InternalName: ewrtwert.exe
LegalCopyright: (c)2008-2018 CPUID.  All rights reserved.
OriginalFilename: ewrtwert.exe
ProductName: CPUID Hardware Monitor
ProductVersion: 1.3.5.0
Assembly Version: 1.3.5.0

IL:Trojan.MSILZilla.12994 also known as:

BkavW32.AIDetectNet.01
LionicHeuristic.File.Generic.00×1!p
Elasticmalicious (high confidence)
CynetMalicious (score: 100)
FireEyeGeneric.mg.3133f8debbf7c89e
McAfeeGenericRXHF-RM!3133F8DEBBF7
CylanceUnsafe
VIPREIL:Trojan.MSILZilla.12994
SangforTrojan.Win32.Save.a
K7AntiVirusTrojan ( 0054088c1 )
AlibabaTrojan:Win32/Maldoc.ali2000008
K7GWTrojan ( 0054088c1 )
CrowdStrikewin/malicious_confidence_100% (W)
CyrenW32/MSIL_Kryptik.DA.gen!Eldorado
ESET-NOD32a variant of MSIL/Kryptik.QAL
APEXMalicious
Paloaltogeneric.ml
ClamAVWin.Keylogger.Banload-9848466-0
KasperskyHEUR:Trojan.MSIL.Crypt.gen
BitDefenderIL:Trojan.MSILZilla.12994
MicroWorld-eScanIL:Trojan.MSILZilla.12994
AvastWin32:Malware-gen
TencentMsil.Trojan.Crypt.Qwhl
Ad-AwareIL:Trojan.MSILZilla.12994
EmsisoftIL:Trojan.MSILZilla.12994 (B)
DrWebTrojan.DownLoader19.57204
ZillyaTrojan.Kryptik.Win32.1834487
TrendMicroTROJ_GEN.R03BC0PIU22
McAfee-GW-EditionGenericRXHF-RM!3133F8DEBBF7
Trapminemalicious.high.ml.score
SophosMal/Generic-S
SentinelOneStatic AI – Malicious PE
GDataIL:Trojan.MSILZilla.12994
JiangminTrojan.MSIL.meib
AviraTR/Dropper.Gen
Antiy-AVLTrojan/Generic.ASMalwS.AF
MicrosoftTrojan:Win32/Wacatac.B!ml
GoogleDetected
AhnLab-V3Trojan/Win32.RL_Generic.R268752
Acronissuspicious
BitDefenderThetaGen:NN.ZemsilF.34698.gp3@aKRev6k
ALYacIL:Trojan.MSILZilla.12994
MAXmalware (ai score=80)
MalwarebytesTrojan.Crypt.MSIL
TrendMicro-HouseCallTROJ_GEN.R03BC0PIU22
RisingTrojan.Generic/MSIL@AI.100 (RDM.MSIL:3SfedfAKhADpjhNa3X9X7g)
YandexTrojan.Crypt!TZDSr+DYU+A
IkarusTrojan.MSIL.Crypt
FortinetPossibleThreat
AVGWin32:Malware-gen
Cybereasonmalicious.ebbf7c
PandaTrj/CI.A

How to remove IL:Trojan.MSILZilla.12994?

IL:Trojan.MSILZilla.12994 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment