Trojan

What is “IL:Trojan.MSILZilla.21787”?

Malware Removal

The IL:Trojan.MSILZilla.21787 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What IL:Trojan.MSILZilla.21787 virus can do?

  • CAPE extracted potentially suspicious content
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • CAPE detected the StormKitty malware family
  • Binary compilation timestomping detected

How to determine IL:Trojan.MSILZilla.21787?



File Info:

name: 7281949BF63AE0EF69A4.mlw
path: /opt/CAPEv2/storage/binaries/2570b397bd45fa42b11373f1e24b94d94a5c06f5394903673f01edd8cc658019
crc32: 4BD95F89
md5: 7281949bf63ae0ef69a4ba6dc268b61e
sha1: fde0d453bfd7e8fe91d054290da202c81c3e295f
sha256: 2570b397bd45fa42b11373f1e24b94d94a5c06f5394903673f01edd8cc658019
sha512: d99b7d92601935c191a44346aded8d73b5915d4d99dc63cf284fe98c8de10412fb450336e8d5809e3ced90b17b98b285531d44b357b77aebe45f6b4122797c12
ssdeep: 6144:vTYi/F61O1iIdhKIm1Z82ecSEuNYnMuBAnLzuyvwWoSF45AcTG8OnXKxsxqbAQ44:vTYmiIdhKIm1Z8PFEuNYB8z1wWo4sAI/
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T14284AE1437B44A0BE1AB0BF889A5623093F8B3C77876C78E5DA554CC77E4F88609359B
sha3_384: fa04afc51cd30b50720e8558f5e339d0c381a5492ace923c045881784b296f674358056215322bde8ab4406763e6f4e8
ep_bytes: ff250020400000000000000000000000
timestamp: 2059-04-10 15:22:20


Version Info:

Translation: 0x0000 0x04b0
Comments: Prynt Data Recovery Tool
CompanyName: Prynt Software
FileDescription: Prynt Stealer 5.2
FileVersion: 1.0.0.0
InternalName: Prynt Stealer 5.2.exe
LegalCopyright: Copyright @FlatLineStealerOfficial
LegalTrademarks: Prynt Software
OriginalFilename: Prynt Stealer 5.2.exe
ProductName: Prynt Stealer 5.2
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

IL:Trojan.MSILZilla.21787 also known as:

BkavW32.AIDetectNet.01
MicroWorld-eScanIL:Trojan.MSILZilla.21787
FireEyeIL:Trojan.MSILZilla.21787
CAT-QuickHealTrojan.YakbeexMSIL.ZZ4
ALYacIL:Trojan.MSILZilla.21787
SangforTrojan.Win32.Save.a
Cybereasonmalicious.bf63ae
SymantecML.Attribute.HighConfidence
Elasticmalicious (moderate confidence)
ESET-NOD32a variant of Win32/RiskWare.HackTool.Agent_AGen.B
APEXMalicious
BitDefenderIL:Trojan.MSILZilla.21787
Ad-AwareIL:Trojan.MSILZilla.21787
VIPREIL:Trojan.MSILZilla.21787
EmsisoftIL:Trojan.MSILZilla.21787 (B)
SentinelOneStatic AI – Malicious PE
GDataIL:Trojan.MSILZilla.21787
MicrosoftTrojan:Win32/Wacatac.B!ml
CynetMalicious (score: 100)
AhnLab-V3Trojan/Win.Generic.C5045236
McAfeeGenericRXTW-SH!7281949BF63A
MAXmalware (ai score=80)
MalwarebytesMalware.AI.4273990673
MaxSecureTrojan.Malware.300983.susgen
FortinetRiskware/HackTool
BitDefenderThetaGen:NN.ZemsilF.34592.xm0@aSJrTrp

How to remove IL:Trojan.MSILZilla.21787?

IL:Trojan.MSILZilla.21787 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment