Trojan

What is “IL:Trojan.MSILZilla.16076”?

Malware Removal

The IL:Trojan.MSILZilla.16076 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What IL:Trojan.MSILZilla.16076 virus can do?

  • Dynamic (imported) function loading detected
  • CAPE extracted potentially suspicious content
  • Authenticode signature is invalid
  • CAPE detected the Nitro malware family
  • Binary compilation timestomping detected

How to determine IL:Trojan.MSILZilla.16076?



File Info:

name: 1940A606FD14BF5349E0.mlw
path: /opt/CAPEv2/storage/binaries/f084b69b33cdde8eb38174a3d488380e068e5f08b961bc86ce66336fedc5f46f
crc32: A3F3C645
md5: 1940a606fd14bf5349e038b941ae215a
sha1: 3dc1580586619845f68a1182f01bc59496e8342e
sha256: f084b69b33cdde8eb38174a3d488380e068e5f08b961bc86ce66336fedc5f46f
sha512: e2edfbc4f40401db0d92b34074ea0260b3ef236a9c695724f5a800de2e9e9fa8f4e38b96da68ffce15a5b681658b827bbf50ba4d057e14a2824d2c7bc330e174
ssdeep: 768:8u9M/YQ58s50ZqpDc0YDA8IL0/ALDwUzc80gmq3oP/oDQ:8u9Zo30AT/r/0O8/oc
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1415343285273862DC46C82B815FB2F7C27B0AF566460C75D4A78E2AC3F277B78D10B56
sha3_384: 429ed85aad4e56feb369d4d656676ba1dd655bff82421b879e64942445b0ffa8ccd30d6e25d1b9be4f8b73c30675a917
ep_bytes: ff250020400000000000000000000000
timestamp: 2069-08-18 23:52:42


Version Info:

Translation: 0x0000 0x04b0
Comments: 
CompanyName: 
FileDescription: NitroRansomware
FileVersion: 1.0.0.0
InternalName: NitroRansomware.exe
LegalCopyright: Copyright ©  2021
LegalTrademarks: 
OriginalFilename: NitroRansomware.exe
ProductName: NitroRansomware
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

IL:Trojan.MSILZilla.16076 also known as:

BkavW32.AIDetectNet.01
Elasticmalicious (high confidence)
CAT-QuickHealTrojan.YakbeexMSIL.ZZ4
McAfeeRansom-Nitro!1940A606FD14
MalwarebytesRansom.FileCryptor
SangforSuspicious.Win32.Save.a
K7AntiVirusTrojan ( 0057ab121 )
BitDefenderIL:Trojan.MSILZilla.16076
K7GWTrojan ( 0057ab121 )
CyrenW32/Nitro.A.gen!Eldorado
ESET-NOD32a variant of MSIL/PSW.Discord.FC
APEXMalicious
AvastWin32:RansomX-gen [Ransom]
CynetMalicious (score: 99)
KasperskyHEUR:Trojan-Ransom.MSIL.Gen.gen
MicroWorld-eScanIL:Trojan.MSILZilla.16076
Ad-AwareIL:Trojan.MSILZilla.16076
SophosTroj/Nitro-Gen
DrWebTrojan.EncoderNET.28
TrendMicroRansom.MSIL.NITRO.SMA
McAfee-GW-EditionRansom-Nitro!1940A606FD14
FireEyeGeneric.mg.1940a606fd14bf53
EmsisoftIL:Trojan.MSILZilla.16076 (B)
IkarusTrojan-Ransom.FileCrypter
GDataMSIL.Trojan-Stealer.DiscordStealer.D
AviraHEUR/AGEN.1247343
MAXmalware (ai score=87)
ArcabitIL:Trojan.MSILZilla.D3ECC
MicrosoftRansom:MSIL/Nitro.MK!MTB
AhnLab-V3Trojan/Win.Generic.C4432813
Acronissuspicious
VBA32Trojan-Ransom.MSIL.Nitro.Heur
ALYacIL:Trojan.MSILZilla.16076
CylanceUnsafe
RisingTrojan.Generic/MSIL@AI.100 (RDM.MSIL:MxnJalnnDs5bmiOYQM6Fyw)
SentinelOneStatic AI – Malicious PE
FortinetMSIL/Filecoder.AHT!tr.ransom
BitDefenderThetaGen:NN.ZemsilF.34742.dm0@a0tcGVc
AVGWin32:RansomX-gen [Ransom]
Cybereasonmalicious.6fd14b

How to remove IL:Trojan.MSILZilla.16076?

IL:Trojan.MSILZilla.16076 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment