IL:Trojan.MSILZilla.8236 information

The IL:Trojan.MSILZilla.8236 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What IL:Trojan.MSILZilla.8236 virus can do?

Dynamic (imported) function loading detected
CAPE extracted potentially suspicious content
.NET file is packed/obfuscated with Confuser
The binary likely contains encrypted or compressed data.
Authenticode signature is invalid

How to determine IL:Trojan.MSILZilla.8236?


File Info:
name: 2836AFC6593C1191F344.mlw
path: /opt/CAPEv2/storage/binaries/0adab5ea4fdc54605390c940e92323a95d57ce543f0d463b8da8450afe6fd6c7
crc32: 41F84884
md5: 2836afc6593c1191f344705305ed56c3
sha1: 947fec2e88483f981d7476810b9816ff65cd2481
sha256: 0adab5ea4fdc54605390c940e92323a95d57ce543f0d463b8da8450afe6fd6c7
sha512: d355133c532e4f3c55711ba87adf125098737dd599bae52652ace26d7d71d5a18fa5156110ea8469b95a1cc37a11117e6201cde30569c4287dff36c547c4ab4a
ssdeep: 6144:g3egdoJTrAlOF97YIDQ8FFufzv97bSR3Yt:GOfYG7YJOKv9K
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1161402083BDC8953D68C497ECBA1865107BAD9631C12DB274C8CF0AA7FDD374A164AF6
sha3_384: 600abd15d87e2471bf08a65c90839d1f1ee0cd3a07eb43687defcf160353b6f75757347a4c649ff468b91dec6b1287fa
ep_bytes: ff250020400000000000000000000000
timestamp: 2022-01-05 14:57:02

Version Info:
Translation: 0x0000 0x04b0
Comments: AMN_ConfuserEx
CompanyName: AMN_AMN
FileDescription: AMN_Confuser GUI
FileVersion: 2.0.0
InternalName: Crypted.exe
LegalCopyright:  
OriginalFilename: Crypted.exe
ProductName: AMN_ConfuserEx_AMN
ProductVersion: 2.0.0
Assembly Version: 2.0.0.0

IL:Trojan.MSILZilla.8236 also known as:

Elastic	malicious (high confidence)
DrWeb	BackDoor.RevetRat.114
MicroWorld-eScan	IL:Trojan.MSILZilla.8236
FireEye	Generic.mg.2836afc6593c1191
CAT-QuickHeal	Trojan.GenericFC.S19436313
McAfee	Artemis!2836AFC6593C
Cylance	Unsafe
Sangfor	Suspicious.Win32.Save.a
K7AntiVirus	Trojan ( 004dcb4e1 )
K7GW	Trojan ( 004dcb4e1 )
CrowdStrike	win/malicious_confidence_80% (W)
BitDefenderTheta	Gen:NN.ZemsilF.34114.mm0@aGlqtPm
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of MSIL/Injector.NTY
ClamAV	Win.Packed.Clipbanker-9785669-0
Kaspersky	HEUR:Trojan.Win32.Generic
BitDefender	IL:Trojan.MSILZilla.8236
Avast	Win32:RATX-gen [Trj]
Tencent	Win32.Trojan.Generic.Hqbu
Ad-Aware	IL:Trojan.MSILZilla.8236
Emsisoft	IL:Trojan.MSILZilla.8236 (B)
McAfee-GW-Edition	Artemis
Sophos	Mal/Generic-R + Mal/DotNet-C
Ikarus	Trojan.MSIL.Injector
GData	IL:Trojan.MSILZilla.8236
Avira	TR/Dropper.Gen
MAX	malware (ai score=80)
Arcabit	IL:Trojan.MSILZilla.D202C
Microsoft	Exploit:Win32/ShellCode!ml
Cynet	Malicious (score: 99)
AhnLab-V3	Trojan/Win.Skeeyah.C4455724
VBA32	Malware-Cryptor.MSIL.gen.2
ALYac	IL:Trojan.MSILZilla.8236
Malwarebytes	Trojan.ClipBanker
APEX	Malicious
Rising	Trojan.AikaCrypter!1.BCF6 (CLASSIC)
SentinelOne	Static AI – Malicious PE
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	MSIL/Injector.B!tr
AVG	Win32:RATX-gen [Trj]
Cybereason	malicious.6593c1

How to remove IL:Trojan.MSILZilla.8236?

IL:Trojan.MSILZilla.8236 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X