IL:Trojan.MSILZilla.58274 removal guide

The IL:Trojan.MSILZilla.58274 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What IL:Trojan.MSILZilla.58274 virus can do?

Authenticode signature is invalid

How to determine IL:Trojan.MSILZilla.58274?


File Info:
name: 3F1B225DD4A030160BD4.mlw
path: /opt/CAPEv2/storage/binaries/e3b64dabc105cf1ee2181b3128749b078e67b09ae5bf894747aacee422ffdb6c
crc32: 56E411CD
md5: 3f1b225dd4a030160bd42e50ef8bfbbc
sha1: c7449c9bc6bb0d35f74e58e0b650221ae911ad92
sha256: e3b64dabc105cf1ee2181b3128749b078e67b09ae5bf894747aacee422ffdb6c
sha512: 36a22ec531ef2475d4aa3feaa7d32f0b4ee715bd3dd2f4c0755e94398ffcd3e80cae1fa936a8f6ac02ca4f4ca7cef1b3a4dd375995cea740a0703948181318d3
ssdeep: 768:H4GjNYSXCvddtzDW+2lQ1EP1rOlH4qqEuZkQgm3F5uXRqzakqetHJigzRwtSUWg5:Hhstzq+2PFH0XhkRVzUWgamSVupb
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1BC435A0B432D9653C6CD0AF994F2422166F0C7776613E78ACCC0D9F629A63C5AB197CB
sha3_384: 33388a55c35395806bad92a6b9584a51479bb6324be499574e006b3f3e36bc8ef257505540a58c4c99b21d61dc7b8168
ep_bytes: ff250020400000000000
timestamp: 2022-11-20 09:42:40

Version Info:
Translation: 0x0000 0x04b0
Comments: 
CompanyName: 
FileDescription: 
FileVersion: 0.0.0.0
InternalName: Checker
LegalCopyright: 
LegalTrademarks: 
OriginalFilename: Checker
ProductName: 
ProductVersion: 0.0.0.0
Assembly Version: 0.0.0.0

IL:Trojan.MSILZilla.58274 also known as:

Bkav	W32.AIDetectNet.01
Elastic	malicious (high confidence)
Cynet	Malicious (score: 100)
CAT-QuickHeal	Backdoor.MsilFC.S27416918
McAfee	GenericRXRR-HJ!3F1B225DD4A0
Sangfor	Trojan.Win32.Save.a
CrowdStrike	win/malicious_confidence_90% (D)
Symantec	ML.Attribute.HighConfidence
tehtris	Generic.Malware
ESET-NOD32	a variant of MSIL/Agent.CTE
APEX	Malicious
ClamAV	Win.Malware.Msilzilla-9949767-0
Kaspersky	HEUR:Backdoor.MSIL.DcRat.gen
BitDefender	IL:Trojan.MSILZilla.58274
MicroWorld-eScan	IL:Trojan.MSILZilla.58274
Avast	Win32:TrojanX-gen [Trj]
Ad-Aware	IL:Trojan.MSILZilla.58274
Emsisoft	IL:Trojan.MSILZilla.58274 (B)
F-Secure	Heuristic.HEUR/AGEN.1202835
DrWeb	BackDoor.AsyncRATNET.2
VIPRE	IL:Trojan.MSILZilla.58274
McAfee-GW-Edition	BehavesLike.Win32.Fareit.qh
Trapmine	malicious.moderate.ml.score
FireEye	Generic.mg.3f1b225dd4a03016
Sophos	ML/PE-A
SentinelOne	Static AI – Malicious PE
Avira	HEUR/AGEN.1202835
Microsoft	Backdoor:Win32/Bladabindi!ml
Arcabit	IL:Trojan.MSILZilla.DE3A2
ZoneAlarm	HEUR:Backdoor.MSIL.DcRat.gen
GData	IL:Trojan.MSILZilla.58274
Google	Detected
AhnLab-V3	Trojan/Win.MSILZilla.C5011219
Acronis	suspicious
ALYac	IL:Trojan.MSILZilla.58274
MAX	malware (ai score=88)
Cylance	Unsafe
Rising	Trojan.Generic/MSIL@AI.90 (RDM.MSIL:5k7+H/VWstziv1GtOE7F4A)
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	MSIL/Agent.CTE!tr
BitDefenderTheta	Gen:NN.ZemsilF.34796.dm0@aCzzkqj
AVG	Win32:TrojanX-gen [Trj]
Cybereason	malicious.bc6bb0

How to remove IL:Trojan.MSILZilla.58274?

IL:Trojan.MSILZilla.58274 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X