Malware

About “MSIL/Kryptik.ICW” infection

Malware Removal

The MSIL/Kryptik.ICW is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What MSIL/Kryptik.ICW virus can do?

  • The binary likely contains encrypted or compressed data.
  • .NET file is packed/obfuscated with SmartAssembly
  • Authenticode signature is invalid

How to determine MSIL/Kryptik.ICW?



File Info:

name: 54C4544319B5C0ECBFC9.mlw
path: /opt/CAPEv2/storage/binaries/1796c7b037bcc563a40ea2f177d92b87837694dc062ee9af65c5c1f6ff2ad4c6
crc32: 422EAF5E
md5: 54c4544319b5c0ecbfc9d96e63ed6e2f
sha1: eb74c8e7aed98ba18ca723edae1e965ef986abcd
sha256: 1796c7b037bcc563a40ea2f177d92b87837694dc062ee9af65c5c1f6ff2ad4c6
sha512: b0cf3425789452af7fdc0bd99707d7db8b6a9c4d8616bb32ff48d74f688d4363df23b79a7f73a290ab4a412ea935655afa49ff9bec5f494e4a5f212d624fd7ea
ssdeep: 1536:7TyAVwqXe9Roy4VHMJ3UeIX8kKntGhORZ40y+dnta6kTLJU7U8RYYYiYYYYcgfYb:GRoBsJEsBnE4kOptar3a7Lap
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T16193081326C87AA2D53F087567F29792C3F54E4D1916A06DF1EA3780C5FB71B3AC1AA0
sha3_384: dc48b8abcaa0b21091094bdb1ffba7414a448c2ebeb76d22d18082c5677523c0ef0996584314292dc69c49f6af01f1b5
ep_bytes: ff250020400000000000000000000000
timestamp: 2022-10-21 14:24:47


Version Info:

0: [No Data]

MSIL/Kryptik.ICW also known as:

BkavW32.AIDetectNet.01
Elasticmalicious (high confidence)
CynetMalicious (score: 100)
CylanceUnsafe
SangforTrojan.Win32.Save.a
CrowdStrikewin/malicious_confidence_100% (D)
CyrenW32/S-5901d407!Eldorado
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of MSIL/Kryptik.ICW
APEXMalicious
F-SecureHeuristic.HEUR/AGEN.1202141
Trapminemalicious.high.ml.score
FireEyeGeneric.mg.54c4544319b5c0ec
SophosML/PE-A
SentinelOneStatic AI – Malicious PE
AviraHEUR/AGEN.1202141
MicrosoftBackdoor:Win32/Bladabindi!ml
GoogleDetected
Acronissuspicious
MalwarebytesMachineLearning/Anomalous.95%
RisingTrojan.Generic/MSIL@AI.90 (RDM.MSIL:ApgoDQRpzmjpS/KdwR0FCQ)
IkarusTrojan.MSIL.Crypt
MaxSecureTrojan.Malware.300983.susgen
FortinetMSIL/Kryptik.GNP!tr
BitDefenderThetaGen:NN.ZemsilF.34726.fm0@auKQGae
Cybereasonmalicious.7aed98

How to remove MSIL/Kryptik.ICW?

MSIL/Kryptik.ICW removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment