Malware

MSIL/Agent.VTB removal

Malware Removal

The MSIL/Agent.VTB is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What MSIL/Agent.VTB virus can do?

  • Authenticode signature is invalid
  • Binary compilation timestomping detected

How to determine MSIL/Agent.VTB?



File Info:

name: 7B7B3929C79A983A4053.mlw
path: /opt/CAPEv2/storage/binaries/df1522b8c9b6ecb735e88861c89e0791c5cebc6e5e25fccabec22fdf848f77ef
crc32: E2BD7954
md5: 7b7b3929c79a983a4053a7cda65d3ee4
sha1: 2b1a0eb2040aadb4d9d6418bc1f15b605921484b
sha256: df1522b8c9b6ecb735e88861c89e0791c5cebc6e5e25fccabec22fdf848f77ef
sha512: 0c865e503106726cb6b2049319f99b2268140d465a00315b11fd159743caa403f5e6a4d22590a05cb64d97b1a4f75c4b91bcba08858aa924088a3a54ab1e4836
ssdeep: 48:6zaRk+UzQAwU/nkLoUbrxQ6ErNMTgOQmmD9il55potS2El/PS50ZlFSpfbNtm:xi+yQZourxpmD9q/ExzNt
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T191B1A511A3E5833BEEB347B258738B510B78FB208D669B9D35C4421F6E226444D33762
sha3_384: 663ea936dc861b9b729f1667d0ceaf5485dbca064339376b5394730fbe3854a8525a0eb4894113c78325ac2127280f6e
ep_bytes: ff250020400000000000000000000000
timestamp: 2064-04-09 05:46:59


Version Info:

Translation: 0x0000 0x04b0
Comments: 
CompanyName: 
FileDescription: cunprotectdata40
FileVersion: 1.0.0.0
InternalName: cunprotectdata40.exe
LegalCopyright: Copyright ©  2022
LegalTrademarks: 
OriginalFilename: cunprotectdata40.exe
ProductName: cunprotectdata40
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

MSIL/Agent.VTB also known as:

BkavW32.AIDetectNet.01
LionicTrojan.Win32.Cerbu.4!c
MicroWorld-eScanGen:Variant.Cerbu.153588
FireEyeGen:Variant.Cerbu.153588
ALYacGen:Variant.Cerbu.153588
CylanceUnsafe
VIPREGen:Variant.Cerbu.153588
SangforTrojan.Win32.Agent.V9ll
K7GWTrojan ( 00598c091 )
K7AntiVirusTrojan ( 00598c091 )
SymantecTrojan.Gen.MBT
ESET-NOD32a variant of MSIL/Agent.VTB
CynetMalicious (score: 99)
BitDefenderGen:Variant.Cerbu.153588
AvastWin32:Trojan-gen
TencentWin32.Trojan.Agent.Kmnw
Ad-AwareGen:Variant.Cerbu.153588
EmsisoftGen:Variant.Cerbu.153588 (B)
ZillyaTrojan.Agent.Win32.3026299
McAfee-GW-EditionArtemis
SophosMal/Generic-S
GDataGen:Variant.Cerbu.153588
AviraTR/Agent.fsdba
Antiy-AVLTrojan/Generic.ASMalwS.3
MicrosoftTrojan:Win32/Wacatac.B!ml
McAfeeArtemis!7B7B3929C79A
MAXmalware (ai score=86)
TrendMicro-HouseCallTROJ_GEN.R03BH09J122
RisingTrojan.Agent!8.B1E (CLOUD)
FortinetMSIL/Agent.VTB!tr
AVGWin32:Trojan-gen
PandaTrj/Chgt.AD

How to remove MSIL/Agent.VTB?

MSIL/Agent.VTB removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment