What is “MSIL/HackTool.SharpView.B potentially unsafe”?

The MSIL/HackTool.SharpView.B potentially unsafe is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What MSIL/HackTool.SharpView.B potentially unsafe virus can do?

CAPE extracted potentially suspicious content
The binary likely contains encrypted or compressed data.
Authenticode signature is invalid

How to determine MSIL/HackTool.SharpView.B potentially unsafe?


File Info:
name: 6AF45C878EB6EA437D6C.mlw
path: /opt/CAPEv2/storage/binaries/d818bc9ecad9034377ca8d72044d074240f0f58b77ff3675a5f4b957f925e273
crc32: 68788B16
md5: 6af45c878eb6ea437d6cb6bd943f214d
sha1: ac28786a57b179867792d7a9f7272fe68636d04f
sha256: d818bc9ecad9034377ca8d72044d074240f0f58b77ff3675a5f4b957f925e273
sha512: b2bd9b7d5cb802a922e6152b3bdca8b0ba025e05e4fa4d1e2354c5d381f6c6e2d917e14617fc90533288f27ccadede6367014af838df4f9887b4dc8b7e7798ac
ssdeep: 12288:Jen968gKJmEQ90TW46AvP6N/iXIFh3Wy/AUC3pWswLhQiNsI+VTgUMEkpe6l:+tgKJhyiWxiXolYx3pWswLsI+Py
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T126F48D2426B9E11CFC7F5B71F1D0AA3985E9E153F342E7984E42C5C15A12782EA82C7F
sha3_384: 5e024f3ebf6571f2f5b6489a6bd9da374e26fb809213cfc59ad58cb3b1388ffcd4bc49263069a6ff4cc36587c15e28e3
ep_bytes: ff250020400000000000000000000000
timestamp: 2020-09-09 03:00:55

Version Info:
Translation: 0x0000 0x04b0
Comments: 
CompanyName: 
FileDescription: SharpView
FileVersion: 1.0.0.0
InternalName: SharpView.exe
LegalCopyright: Copyright ©  2018
LegalTrademarks: 
OriginalFilename: SharpView.exe
ProductName: SharpView
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

MSIL/HackTool.SharpView.B potentially unsafe also known as:

Bkav	W32.AIDetectMalware.CS
Lionic	Hacktool.Win32.Rubeus.3!c
Elastic	malicious (high confidence)
MicroWorld-eScan	Gen:Heur.MSIL.Krypt.48
FireEye	Generic.mg.6af45c878eb6ea43
Skyhigh	BehavesLike.Win32.Generic.bc
Cylance	unsafe
Sangfor	Hacktool.Msil.Agent.Vaj1
CrowdStrike	win/malicious_confidence_90% (D)
Arcabit	Trojan.MSIL.Krypt.48
Symantec	ML.Attribute.HighConfidence
tehtris	Generic.Malware
ESET-NOD32	a variant of MSIL/HackTool.SharpView.B potentially unsafe
APEX	Malicious
Kaspersky	HEUR:HackTool.MSIL.Rubeus.gen
BitDefender	Gen:Heur.MSIL.Krypt.48
Avast	Win32:HacktoolX-gen [Trj]
Emsisoft	Gen:Heur.MSIL.Krypt.48 (B)
VIPRE	Gen:Heur.MSIL.Krypt.48
Trapmine	malicious.moderate.ml.score
Sophos	Generic Reputation PUA (PUA)
Ikarus	Virus.MSIL.Menace
Google	Detected
Microsoft	Program:Win32/Wacapew.C!ml
ZoneAlarm	HEUR:HackTool.MSIL.Rubeus.gen
GData	Gen:Heur.MSIL.Krypt.48
Cynet	Malicious (score: 100)
AhnLab-V3	HackTool/Win32.SharpView.C4261593
McAfee	Artemis!6AF45C878EB6
MAX	malware (ai score=84)
Malwarebytes	Generic.Malware.AI.DDS
Rising	Hacktool.SharpView!8.123F7 (CLOUD)
SentinelOne	Static AI – Malicious PE
AVG	Win32:HacktoolX-gen [Trj]
Cybereason	malicious.a57b17
DeepInstinct	MALICIOUS

How to remove MSIL/HackTool.SharpView.B potentially unsafe?

MSIL/HackTool.SharpView.B potentially unsafe removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X