Categories: Malware

MSIL/Agent.VNG malicious file

The MSIL/Agent.VNG is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What MSIL/Agent.VNG virus can do?

Dynamic (imported) function loading detected
CAPE extracted potentially suspicious content
The binary likely contains encrypted or compressed data.
Authenticode signature is invalid

How to determine MSIL/Agent.VNG?


File Info:
name: 98BF05BBE0A8EABA258C.mlwpath: /opt/CAPEv2/storage/binaries/8a9cefa63802b04de4ee53aa8b85fe4911eed878ef7d2eb207088a25f561a399crc32: FF3DCC15md5: 98bf05bbe0a8eaba258c9f09cf9bcf1fsha1: e69675ed7de83894af85754f815fe9881287b6a9sha256: 8a9cefa63802b04de4ee53aa8b85fe4911eed878ef7d2eb207088a25f561a399sha512: 2abb3e19c9f0ec0580fc910f56d0d4bcc66b003d4d0e712ca11ac5866b879b016c4f1b87336a8b4eaf4cd57a3d95b6efb8096129d778974a8979944a26b4b66dssdeep: 24576:B+YMwzjGKbQf7t9BjtQbMBmbla7vCdcoCMQe1:oxIKKbQf7t9zQbMBka76dcJ1e1type: PE32 executable (GUI) Intel 80386, for MS Windowstlsh: T1A705F0016488B9E2F6371F778CA3163A5D0757A963AE8BDB5E4B47C428AD3DC52B7300sha3_384: f05eb3511d3a6db59096c8fcbc4f3d2b09beb97847e6f0e88b1ed0e5c173262710f91bd4911bf8dc104436838d2481d9ep_bytes: ff250020400000000000000000000000timestamp: 2022-06-23 01:04:52
Version Info:
Translation: 0x0000 0x04b0Comments: FirefoxCompanyName: Mozilla CorporationFileDescription: FirefoxFileVersion: 101.0.1.8194InternalName: ctf.exeLegalCopyright: ©Firefox and Mozilla Developers; available under the MPL 2 license.LegalTrademarks: Firefox is a Trademark of The Mozilla Foundation.OriginalFilename: ctf.exeProductName: FirefoxProductVersion: 101.0.1.8194Assembly Version: 101.0.1.8194

MSIL/Agent.VNG also known as:

Bkav	W32.AIDetectNet.01
Lionic	Trojan.MSIL.Seraph.a!c
Elastic	malicious (high confidence)
MicroWorld-eScan	Trojan.GenericKD.50512812
FireEye	Generic.mg.98bf05bbe0a8eaba
CAT-QuickHeal	Trojan.Win32CiR
ALYac	Trojan.GenericKD.50512812
Cylance	Unsafe
Zillya	Trojan.Agent.Win32.2815957
CrowdStrike	win/malicious_confidence_100% (W)
Alibaba	TrojanDownloader:MSIL/Seraph.07cd8bc6
K7GW	Trojan ( 00594b981 )
K7AntiVirus	Trojan ( 00594b981 )
Cyren	W32/ABRisk.DHQM-8487
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	MSIL/Agent.VNG
APEX	Malicious
Paloalto	generic.ml
Kaspersky	HEUR:Trojan-Downloader.MSIL.Seraph.gen
BitDefender	Trojan.GenericKD.50512812
NANO-Antivirus	Trojan.Win32.Seraph.jpngzp
Avast	Win32:DropperX-gen [Drp]
Rising	Trojan.Generic/MSIL@AI.100 (RDM.MSIL:OQeSafJnfUOzOIW9hoEbkQ)
Ad-Aware	Trojan.GenericKD.50512812
Emsisoft	Trojan.GenericKD.50512812 (B)
Comodo	Malware@#2hygy9u3y2tra
DrWeb	Trojan.Siggen18.13007
VIPRE	Trojan.GenericKD.50512812
TrendMicro	TROJ_GEN.R03BC0WFP22
McAfee-GW-Edition	BehavesLike.Win32.Generic.cc
Trapmine	malicious.high.ml.score
Sophos	Mal/Generic-S
SentinelOne	Static AI – Malicious PE
Jiangmin	TrojanDownloader.MSIL.alah
Avira	TR/Agent.nsevb
Antiy-AVL	Trojan/Generic.ASMalwS.75ED
Kingsoft	Win32.Troj.Undef.(kcloud)
Microsoft	Trojan:Win32/Skeeyah.A!rfn
Arcabit	Trojan.Generic.D302C3AC
GData	Trojan.GenericKD.50512812
Cynet	Malicious (score: 100)
AhnLab-V3	Trojan/Win.Seraph.C5179287
Acronis	suspicious
McAfee	RDN/Real Protect-PENGSD5
MAX	malware (ai score=82)
VBA32	TScope.Trojan.MSIL
Malwarebytes	Trojan.MalPack
TrendMicro-HouseCall	TROJ_GEN.R03BC0WFP22
Tencent	Malware.Win32.Gencirc.11fccf90
Ikarus	Gen.MSIL.Androm
MaxSecure	Trojan.Malware.74570710.susgen
Fortinet	PossibleThreat
BitDefenderTheta	Gen:NN.ZemsilF.34786.0m0@ayi6LVo
AVG	Win32:DropperX-gen [Drp]
Cybereason	malicious.be0a8e
Panda	Trj/Chgt.AA