Malware

MSIL/GenKryptik.FFOD information

Malware Removal

The MSIL/GenKryptik.FFOD is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What MSIL/GenKryptik.FFOD virus can do?

  • The binary likely contains encrypted or compressed data.
  • Network activity detected but not expressed in API logs

Related domains:

z.whorecord.xyz
a.tomx.xyz

How to determine MSIL/GenKryptik.FFOD?



File Info:

crc32: D2820472
md5: 463db775ffff04e85fa5111e0793c747
name: 463DB775FFFF04E85FA5111E0793C747.mlw
sha1: fd85aa23a8594a03bbd9ed3f05cd191d2b7ba062
sha256: af228fc243a7e43986326e70c375d6568d2123e8a079b193aa5cafaa5973d7f5
sha512: 84331d23153d0abafad33a3dcfb34d6e381f09f41255f8c472fa5863d91826ed22b14b03e5b2595bde4c9c7660856ff161b9dec7cbd5e30ee4f6e7510f30fe2c
ssdeep: 12288:RbV6q6e5iTzAay4JeGtGNPuk6f2paPlErS:56eo/heGsNPuk6fM2W+
type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows


Version Info:

Translation: 0x0000 0x04b0
LegalCopyright: Copyright xa9  Fayva
Assembly Version: 0.8.0.0
InternalName: yynaFO0ha.exe
FileVersion: 0.8.0.0
CompanyName: Fayva
LegalTrademarks: 
Comments: 
ProductName: webshellManager
ProductVersion: 0.8.0.0
FileDescription: wsManager
OriginalFilename: yynaFO0ha.exe

MSIL/GenKryptik.FFOD also known as:

Elasticmalicious (high confidence)
CylanceUnsafe
SangforTrojan.Win32.Save.a
CrowdStrikewin/malicious_confidence_60% (D)
Cybereasonmalicious.3a8594
CyrenW32/MSIL_Kryptik.EIA.gen!Eldorado
ESET-NOD32a variant of MSIL/GenKryptik.FFOD
APEXMalicious
CynetMalicious (score: 100)
KasperskyUDS:Trojan.MSIL.Taskun.gen
SophosML/PE-A
McAfee-GW-EditionBehavesLike.Win32.Generic.ch
FireEyeGeneric.mg.463db775ffff04e8
SentinelOneStatic AI – Malicious PE
KingsoftWin32.Troj.Undef.(kcloud)
MicrosoftTrojan:Win32/AgentTesla!ml
McAfeeArtemis!463DB775FFFF
MalwarebytesMachineLearning/Anomalous.100%
FortinetMSIL/Kryptik.AAYL!tr
Paloaltogeneric.ml

How to remove MSIL/GenKryptik.FFOD?

MSIL/GenKryptik.FFOD removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment