How to remove “IL:Trojan.MSILZilla.15602”?

The IL:Trojan.MSILZilla.15602 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What IL:Trojan.MSILZilla.15602 virus can do?

Dynamic (imported) function loading detected
Authenticode signature is invalid
Anomalous .NET characteristics
CAPE detected the StormKitty malware family

How to determine IL:Trojan.MSILZilla.15602?


File Info:
name: 82543A4DD8CE9AF4EB92.mlw
path: /opt/CAPEv2/storage/binaries/d7a8c07a71ecdb049bd559349691b12a1c4cc67ea3a67766f7f6c41a35d9dfee
crc32: E5ECA05E
md5: 82543a4dd8ce9af4eb92b23b63e9efcc
sha1: 120a8ac552c0d30fe7645efab76b7eb2c50c23d8
sha256: d7a8c07a71ecdb049bd559349691b12a1c4cc67ea3a67766f7f6c41a35d9dfee
sha512: d40deb274af919b1be45cd37d17bbef682b5cf4abc3b14cbd8632ae0238149c400d131e1a07f4da763213d67efaf152913b663c5237753cadbe7cf49999f82bd
ssdeep: 1536:zBdK/BtATyQmRWpPKH+HZW/Ey/94c2GTLhmbDM96qNdmJb:zBGtATrpPKH+HwEymc/TVmbDsjP8b
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T1C1734B04B7DA1A64D1BD8BFD107202269374F0ABAA57EB8F1CD824DA0EE2BC44515FD7
sha3_384: aa7bd7a01a4c3858a0a9f42fc8ee405d0a2fb81f92e5feb568b9c12055999254276dd010f5d4ccccc510871b9e1b2f88
ep_bytes: ff250020400000000000000000000000
timestamp: 2022-04-18 11:32:58

Version Info:
Translation: 0x0000 0x04b0
FileDescription:  
FileVersion: 0.0.0.0
InternalName: lukazgomontage.exe
LegalCopyright:  
OriginalFilename: lukazgomontage.exe
ProductVersion: 0.0.0.0
Assembly Version: 0.0.0.0

IL:Trojan.MSILZilla.15602 also known as:

Bkav	W32.AIDetectNet.01
MicroWorld-eScan	IL:Trojan.MSILZilla.15602
FireEye	Generic.mg.82543a4dd8ce9af4
ALYac	IL:Trojan.MSILZilla.15602
Cylance	Unsafe
Sangfor	Virus.Win32.Save.a
Arcabit	IL:Trojan.MSILZilla.D3CF2
Cyren	W32/Azorult.D.gen!Eldorado
Elastic	malicious (high confidence)
ESET-NOD32	a variant of MSIL/PSW.Agent.SCI
APEX	Malicious
ClamAV	Win.Malware.Msilzilla-9943956-0
Kaspersky	HEUR:Trojan-PSW.MSIL.Disco.gen
BitDefender	IL:Trojan.MSILZilla.15602
Avast	Win32:MalwareX-gen [Trj]
Ad-Aware	IL:Trojan.MSILZilla.15602
TACHYON	Trojan-PWS/W32.DN-Disco.77312.E
Sophos	ML/PE-A
F-Secure	Heuristic.HEUR/AGEN.1203048
DrWeb	Trojan.PWS.DiscordNET.50
McAfee-GW-Edition	BehavesLike.Win32.BrowseFox.lh
Emsisoft	IL:Trojan.MSILZilla.15602 (B)
SentinelOne	Static AI – Malicious PE
Avira	HEUR/AGEN.1203048
Antiy-AVL	Trojan/Generic.ASMalwS.355FF9F
Microsoft	Trojan:Win32/AgentTesla!ml
GData	MSIL.Trojan-Stealer.DiscordStealer.D
Cynet	Malicious (score: 100)
AhnLab-V3	Malware/Win.Generic.C5052651
Acronis	suspicious
McAfee	GenericRXSO-IL!82543A4DD8CE
MAX	malware (ai score=82)
Malwarebytes	Spyware.StormKitty
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	MSIL/Agent.SCI!tr.pws
BitDefenderTheta	Gen:NN.ZemsilF.34606.em0@a4RVYxk
AVG	Win32:MalwareX-gen [Trj]

How to remove IL:Trojan.MSILZilla.15602?

IL:Trojan.MSILZilla.15602 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X