Malware

MSIL/Agent.VFT removal guide

Malware Removal

The MSIL/Agent.VFT is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What MSIL/Agent.VFT virus can do?

  • Dynamic (imported) function loading detected
  • Authenticode signature is invalid
  • Anomalous .NET characteristics

How to determine MSIL/Agent.VFT?



File Info:

name: CF5344C48E4E6DDAD2DF.mlw
path: /opt/CAPEv2/storage/binaries/66be09bc81cdfe94173b5691be37c8913d333ee23d1529b39b619eb7b2db4294
crc32: 80A850BA
md5: cf5344c48e4e6ddad2df7549547791cf
sha1: b11dfc386d9849531ee36b65d4eb938ca0a5549e
sha256: 66be09bc81cdfe94173b5691be37c8913d333ee23d1529b39b619eb7b2db4294
sha512: ef235ad74ef5eb5432db29c810c9dddcf1b3806c303dbfff27a9ef7898a8b966a7233cf6138375ec8e0c07d043ac36b5a7c8004270d9df81340a6e71c721ed6b
ssdeep: 6144:3QGUeeJNPdFbM/LoUi0lWvZww9I12NmZUvUhU4sAvJW3:3fUeo4ziwWvnK12N17AxW3
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T13464AD17C1365B2EC574417A3CDF63813B88CFC1047A8DE5D9BD9086739B82BA2E7929
sha3_384: cc1faccab3f66902c205a5b6de6ab9becb7d13a45d27e6947b4cd8c87389153ae7e6328f636265fd23784180022eec0b
ep_bytes: ff250020400000000000000000000000
timestamp: 2022-05-12 04:58:02


Version Info:

Translation: 0x0000 0x04b0
FileDescription:  
FileVersion: 0.0.0.0
InternalName: AlvinRealms.exe
LegalCopyright:  
OriginalFilename: AlvinRealms.exe
ProductVersion: 0.0.0.0
Assembly Version: 0.0.0.0

MSIL/Agent.VFT also known as:

Elasticmalicious (high confidence)
BitDefenderIL:Trojan.MSILZilla.15309
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of MSIL/Agent.VFT
APEXMalicious
AvastWin32:TrojanX-gen [Trj]
CynetMalicious (score: 99)
KasperskyHEUR:Trojan.MSIL.Dnoper.gen
MicroWorld-eScanIL:Trojan.MSILZilla.15309
Ad-AwareIL:Trojan.MSILZilla.15309
FireEyeGeneric.mg.cf5344c48e4e6dda
EmsisoftIL:Trojan.MSILZilla.15309 (B)
SentinelOneStatic AI – Malicious PE
GDataIL:Trojan.MSILZilla.15309
AviraHEUR/AGEN.1247442
ArcabitIL:Trojan.MSILZilla.D3BCD
MicrosoftTrojan:Win32/Sabsik.TE.B!ml
AhnLab-V3Trojan/Win.Generic.C4718081
Acronissuspicious
ALYacIL:Trojan.MSILZilla.15309
MAXmalware (ai score=88)
CylanceUnsafe
MaxSecureTrojan.Malware.300983.susgen
BitDefenderThetaGen:NN.ZemsilF.34666.um0@a0MGQJb
AVGWin32:TrojanX-gen [Trj]

How to remove MSIL/Agent.VFT?

MSIL/Agent.VFT removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment