How to remove “IL:Trojan.MSILZilla.22102”?

The IL:Trojan.MSILZilla.22102 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What IL:Trojan.MSILZilla.22102 virus can do?

Dynamic (imported) function loading detected
CAPE extracted potentially suspicious content
Authenticode signature is invalid

How to determine IL:Trojan.MSILZilla.22102?


File Info:
name: 82BF32F07DA5262BE6E8.mlw
path: /opt/CAPEv2/storage/binaries/ad9bd5a5b47629c4b14e80a485c0da0319ebe768ab66435d5a25f7b70fa4b369
crc32: 62152E18
md5: 82bf32f07da5262be6e8f06f6a77c882
sha1: 8abe00b10c982f2c92b3ecef58051b29ac2ce3d5
sha256: ad9bd5a5b47629c4b14e80a485c0da0319ebe768ab66435d5a25f7b70fa4b369
sha512: 84ca6cf724460609eb0163ac264726b910ec3208863fb7dc3977481e632af413bf17b831afc9ec87fa5f986f5201a5ca1efd8c650ef429e640596fed7c8afdc4
ssdeep: 384:auT9YE9xob+XkLlX1U/3EE/GjSdpTR5gh4ILquReBK:aors+cgGspTR5g+ILquRr
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1F973FB923656832BE5350A3B98E6CE95C1267EC058108F2BB4F87F7B3F723416B53A15
sha3_384: bc94826f4dabcb326921f44c049a21bd9fcf2b484a1259d1e20796ca2438555c88dd222c1c649075664ed4632dbca48e
ep_bytes: ff250020400000000000000000000000
timestamp: 2022-07-19 09:06:21

Version Info:
Translation: 0x0000 0x04b0
Comments: Bandicam Setup File
CompanyName: Bandicam Company
FileDescription: Bandicam Setup File
FileVersion: 6.0.0.1998
InternalName: Xhoogndy.exe
LegalCopyright: Copyright(C) 2009-2022 Bandicam.com, All rights reserved.
LegalTrademarks: 
OriginalFilename: Xhoogndy.exe
ProductName: Bandicam
ProductVersion: 6.0.0.1998
Assembly Version: 6.0.0.1998

IL:Trojan.MSILZilla.22102 also known as:

Bkav	W32.AIDetectNet.01
DrWeb	BackDoor.SiggenNET.35
MicroWorld-eScan	IL:Trojan.MSILZilla.22102
FireEye	Generic.mg.82bf32f07da5262b
ALYac	IL:Trojan.MSILZilla.22102
BitDefenderTheta	Gen:NN.ZemsilF.34806.em0@ai1r4sj
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (high confidence)
ESET-NOD32	a variant of MSIL/TrojanDownloader.Agent.MPA
Paloalto	generic.ml
BitDefender	IL:Trojan.MSILZilla.22102
Avast	Win32:DropperX-gen [Drp]
Ad-Aware	IL:Trojan.MSILZilla.22102
Sophos	ML/PE-A
VIPRE	IL:Trojan.MSILZilla.22102
McAfee-GW-Edition	Artemis
SentinelOne	Static AI – Malicious PE
Emsisoft	IL:Trojan.MSILZilla.22102 (B)
GData	MSIL.Trojan-Downloader.Agent.BJF
Arcabit	IL:Trojan.MSILZilla.D5656
Microsoft	Trojan:Win32/Sabsik.FL.B!ml
Cynet	Malicious (score: 100)
AhnLab-V3	Trojan/Win.PWS.C5212068
McAfee	Artemis!82BF32F07DA5
Malwarebytes	Trojan.MalPack
APEX	Malicious
MAX	malware (ai score=83)
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	MSIL/Agent.MQQ!tr
AVG	Win32:DropperX-gen [Drp]

How to remove IL:Trojan.MSILZilla.22102?

IL:Trojan.MSILZilla.22102 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X