Malware

What is “MSIL/Kryptik.AFLM”?

Malware Removal

The MSIL/Kryptik.AFLM is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What MSIL/Kryptik.AFLM virus can do?

  • Dynamic (imported) function loading detected
  • CAPE extracted potentially suspicious content
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid

How to determine MSIL/Kryptik.AFLM?



File Info:

name: 5A3E061158040700F92F.mlw
path: /opt/CAPEv2/storage/binaries/b733c9d0a98568653b7ab0d2a97603c4b624c7cd7f64c83749bd9d1ea83c6496
crc32: 7C123BDD
md5: 5a3e061158040700f92fbb7c39bd2cd5
sha1: f46c1a4d0be9c27d5b425115377c420b8e877ded
sha256: b733c9d0a98568653b7ab0d2a97603c4b624c7cd7f64c83749bd9d1ea83c6496
sha512: 2d82cf669fed56b253f9aa8a28591b4c236c085704271f067fb1fe08551f202d09e5021ce24c35d4bda02e68cf9d7c8817ee85de84b48c6286210f667ee294d5
ssdeep: 12288:rUzeh2iNnMAbXMLnWHZV7ryweBgj73uigeNhhzublqwJgQF3kIje8hT:Mk1xBXAsZV/yLuuhT
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1D9D44A9C366C71DFC857C572CAA85C64EA2064BF671B9207902716ADEE0DB9BCF104F2
sha3_384: 1ee638264e7c8e830e0139dddee3389227eb0792deb112ee0d524ec14013a4573278a8a701dc58fab13a1cd4c8f2652e
ep_bytes: ff250020400000000000000000000000
timestamp: 2022-06-17 05:02:36


Version Info:

Translation: 0x0000 0x04b0
Comments: 
CompanyName: 
FileDescription: MKL
FileVersion: 1.0.0.0
InternalName: I04C.exe
LegalCopyright: Copyright ©  2016
LegalTrademarks: 
OriginalFilename: I04C.exe
ProductName: MKL
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

MSIL/Kryptik.AFLM also known as:

BkavW32.AIDetectNet.01
FireEyeGeneric.mg.5a3e061158040700
CAT-QuickHealTrojan.AgentTesla.S28013721
CylanceUnsafe
SangforSuspicious.Win32.Save.a
Cybereasonmalicious.d0be9c
CyrenW32/MSIL_Kryptik.DLB.gen!Eldorado
Elasticmalicious (high confidence)
ESET-NOD32a variant of MSIL/Kryptik.AFLM
APEXMalicious
Paloaltogeneric.ml
CynetMalicious (score: 100)
KasperskyVHO:Trojan-Spy.MSIL.Noon.gen
Trapminesuspicious.low.ml.score
SophosML/PE-A
MicrosoftTrojan:Win32/Wacatac.B!ml
Acronissuspicious
BitDefenderThetaGen:NN.ZemsilF.34742.Lm0@aO2REup
VBA32CIL.HeapOverride.Heur
RisingTrojan.Generic/MSIL@AI.90 (RDM.MSIL:NbWJOmbCuqdpJbaK1WllLw)
SentinelOneStatic AI – Malicious PE
MaxSecureTrojan.Malware.300983.susgen
FortinetMSIL/GenKryptik.FKCZ!tr
CrowdStrikewin/malicious_confidence_70% (D)

How to remove MSIL/Kryptik.AFLM?

MSIL/Kryptik.AFLM removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment