Trojan

About “IL:Trojan.MSILZilla.5385” infection

Malware Removal

The IL:Trojan.MSILZilla.5385 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What IL:Trojan.MSILZilla.5385 virus can do?

  • Dynamic (imported) function loading detected
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid

How to determine IL:Trojan.MSILZilla.5385?



File Info:

name: 7EF5081B1D16616671C5.mlw
path: /opt/CAPEv2/storage/binaries/513357fad8df79447103ef2c744273d71ddbeeba5ccffca2f6905675290db64d
crc32: 6A585473
md5: 7ef5081b1d16616671c552eba179fa8c
sha1: 5abbc71680c83b981d3adc23615a2ec4b67e7303
sha256: 513357fad8df79447103ef2c744273d71ddbeeba5ccffca2f6905675290db64d
sha512: 2cfc48d579c7dbef496034eae3ce5a2ef2ab1fc56a89ab1ffbd341f994e7b6ee16ab2b6ff102bfdc799ebe272a7c7c7d649d1a63e1f30caa42dc83aeef6eba38
ssdeep: 49152:RaNfM+i3n9hKsIWckTls5nPa35pQzQpTLsatj1el/rBOWKFqD6dLMmv33XQ/m4TM:RcqnjnFTyJy35pQzQpTLsavel/gWKsEz
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1EBC5330AC5001F77E685C6B758E6630E6361A4219FC9EFBA3EE495D216F37CD582230B
sha3_384: 264661911d2a2d0112b02c5e96e23100bace6d15928a2534154c197b785072368b9347559b654cfa70e4415c4baa57bf
ep_bytes: ff250020400000000000000000000000
timestamp: 2022-04-25 17:39:22


Version Info:

Translation: 0x0000 0x04b0
Comments: BoosterX
CompanyName: Tramp
FileDescription: BoosterX
FileVersion: 1.1.9.0
InternalName: BoosterX.exe
LegalCopyright: Copyright © 2022
OriginalFilename: BoosterX.exe
ProductName: BoosterX
ProductVersion: 1.1.9.0
Assembly Version: 1.1.9.0

IL:Trojan.MSILZilla.5385 also known as:

BkavW32.AIDetectNet.01
Elasticmalicious (high confidence)
CylanceUnsafe
BitDefenderIL:Trojan.MSILZilla.5385
Cybereasonmalicious.b1d166
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of MSIL/GenKryptik.CHWA
APEXMalicious
CynetMalicious (score: 100)
KasperskyHEUR:Trojan.MSIL.Agent.gen
MicroWorld-eScanIL:Trojan.MSILZilla.5385
RisingTrojan.Generic/MSIL@AI.100 (RDM.MSIL:XCywRBGR3zKqcNojoO+rfw)
Ad-AwareIL:Trojan.MSILZilla.5385
EmsisoftIL:Trojan.MSILZilla.5385 (B)
F-SecureTrojan.TR/Dropper.Gen
FireEyeGeneric.mg.7ef5081b1d166166
SophosGeneric ML PUA (PUA)
GDataIL:Trojan.MSILZilla.5385
AviraTR/Dropper.Gen
ArcabitIL:Trojan.MSILZilla.D1509
ZoneAlarmHEUR:Trojan.Win32.Generic
MicrosoftTrojan:Win32/Sabsik.FL.B!ml
AhnLab-V3Trojan/Win32.RL_Generic.C4286411
Acronissuspicious
ALYacIL:Trojan.MSILZilla.5385
MAXmalware (ai score=88)
MalwarebytesMachineLearning/Anomalous.96%
SentinelOneStatic AI – Malicious PE
MaxSecureTrojan.Malware.300983.susgen
FortinetMSIL/GenKryptik.CHWA!tr
BitDefenderThetaGen:NN.ZemsilF.34606.Eo0@aaspl6g

How to remove IL:Trojan.MSILZilla.5385?

IL:Trojan.MSILZilla.5385 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment