Malware

What is “MSIL/Kryptik.PNU”?

Malware Removal

The MSIL/Kryptik.PNU is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What MSIL/Kryptik.PNU virus can do?

  • Presents an Authenticode digital signature
  • The binary likely contains encrypted or compressed data.

How to determine MSIL/Kryptik.PNU?



File Info:

crc32: 17E56CD2
md5: fcdd5ac87b923835720c5a732c5a453d
name: FCDD5AC87B923835720C5A732C5A453D.mlw
sha1: dc220877cbd022468d8d4be3866542797f8c7983
sha256: dee4abedb106a9f5aae8f85553554ee736b320f7cac60a871f0fdc758de33f2d
sha512: 1e6e2dbab91cfc0311ed816d28a9d76ebf8a531070dff0ff6c34315410a581326d645044613988994103cee85cbd212d2dd6da6e5b91d4b007384185d6751683
ssdeep: 12288:CPJCCe+LxWR4lpTDVcKEl/GxetEFXh7xgzuWXWuwI9T5CCSN78H5lfLkHhHHhHhE:C4C1JlpTDyJGIEFXtcuWnR9T83S7fmBs
type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows


Version Info:

LegalCopyright: Copyright xa9 2005-2017 Piriform Ltd
InternalName: ccleaner
FileVersion: 5, 33, 00, 6162
CompanyName: Piriform Ltd
Comments: CCleaner
ProductName: CCleaner
ProductVersion: 5, 33, 00, 6162
FileDescription: CCleaner
OriginalFilename: ccleaner.exe
Translation: 0x0409 0x04b0

MSIL/Kryptik.PNU also known as:

LionicTrojan.MSIL.Quasar.4!c
Elasticmalicious (high confidence)
ClamAVWin.Packed.Azorult-9852769-1
ALYacTrojan.Autoruns.GenericKD.32317273
CylanceUnsafe
ZillyaTrojan.Kryptik.Win32.1494746
CrowdStrikewin/malicious_confidence_80% (D)
AlibabaTrojanSpy:MSIL/Quasar.667a17f0
K7GWTrojan ( 0053d3bf1 )
K7AntiVirusTrojan ( 0053d3bf1 )
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of MSIL/Kryptik.PNU
APEXMalicious
AvastWin32:CrypterX-gen [Trj]
CynetMalicious (score: 100)
KasperskyHEUR:Trojan-Spy.MSIL.Quasar.gen
BitDefenderTrojan.Autoruns.GenericKD.32317273
NANO-AntivirusTrojan.Win32.Quasar.fijqjy
MicroWorld-eScanTrojan.Autoruns.GenericKD.32317273
TencentWin32.Trojan.Falsesign.Ehrx
Ad-AwareTrojan.Autoruns.GenericKD.32317273
SophosMal/Generic-S
ComodoMalware@#1blt1h0smntq
BitDefenderThetaGen:NN.ZemsilF.34170.Vq2@a8c9Hdli
McAfee-GW-EditionGenericRXGP-MM!FCDD5AC87B92
FireEyeGeneric.mg.fcdd5ac87b923835
EmsisoftBackdoor.CCHack (A)
SentinelOneStatic AI – Malicious PE
AviraHEUR/AGEN.1129989
eGambitPE.Heur.InvalidSig
Antiy-AVLTrojan/Generic.ASMalwS.280E2D7
MicrosoftTrojan:Win32/AgentTesla!ml
ArcabitTrojan.Autoruns.Generic.D1ED1F59
GDataTrojan.Autoruns.GenericKD.32317273
McAfeeGenericRXGP-MM!FCDD5AC87B92
MAXmalware (ai score=99)
VBA32TScope.Trojan.MSIL
PandaTrj/GdSda.A
YandexTrojan.Kryptik!EHDK334T16c
IkarusTrojan.MSIL.Crypt
FortinetMSIL/Generic.AP.13E4DA0!tr
AVGWin32:CrypterX-gen [Trj]
Paloaltogeneric.ml

How to remove MSIL/Kryptik.PNU?

MSIL/Kryptik.PNU removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment