Should I remove “MSIL/Kryptik.YEW”?

Malware Removal

The MSIL/Kryptik.YEW is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware - Review 2020

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
6-day free trial available.

What MSIL/Kryptik.YEW virus can do?

  • The binary likely contains encrypted or compressed data.
  • Network activity detected but not expressed in API logs

How to determine MSIL/Kryptik.YEW?


File Info:

crc32: C5442958
md5: 21cae8cb761592f1156daa6c87cd3978
name: upload_file
sha1: 66ae4a08ea9d0e38642d74a1b7867d507ced9bab
sha256: 5e5dc622108b69d77e09abf99287d670c8f0249e59971ee49ef7506adb572ecf
sha512: 01f09b07b1864eaaf5f1cce734e25274cf57edb59b9c16ad212a45ed935cc8c82684f5e05dac7d01fa33271b443496559ebed50163d22c00bb3f3bf63ea8fee1
ssdeep: 12288:8TbHDdiSG0ahtIQK7fuqHeYu6RSJjNJP6jR22f6mL4:8TrDxahtzhKeYu6R6C/h
type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows

Version Info:

Translation: 0x0000 0x04b0
LegalCopyright: Copyright xa9 2004 - 2020
Assembly Version: 0.0.0.0
InternalName: oooooo.exe
FileVersion: 3.4.6.7
CompanyName: 0p_z-38b^y}64u[)7o5b
Comments: x$69i@o0&3d4b#;7y5
ProductName: 7q;o}21y:=0k5b?|8kb!49x
ProductVersion: 3.4.6.7
FileDescription: 7q;o}21y:=0k5b?|8kb!49x
OriginalFilename: oooooo.exe

MSIL/Kryptik.YEW also known as:

Elasticmalicious (high confidence)
MicroWorld-eScanTrojan.GenericKD.44078334
FireEyeGeneric.mg.21cae8cb761592f1
ALYacTrojan.GenericKD.44078334
CylanceUnsafe
SangforMalware
K7AntiVirusTrojan ( 005711ef1 )
BitDefenderTrojan.GenericKD.44078334
K7GWTrojan ( 005711ef1 )
CrowdStrikewin/malicious_confidence_90% (W)
InvinceaMal/Generic-S
SymantecML.Attribute.HighConfidence
APEXMalicious
KasperskyHEUR:Trojan-Spy.MSIL.Noon.gen
AlibabaTrojanSpy:MSIL/Kryptik.24f405a9
ViRobotTrojan.Win32.Z.Highconfidence.562688
Ad-AwareTrojan.GenericKD.44078334
ComodoMalware@#21ll77niwonhr
DrWebTrojan.Inject4.3289
VIPRETrojan.Win32.Generic.pak!cobra
McAfee-GW-EditionBehavesLike.Win32.Generic.hc
EmsisoftTrojan.GenericKD.44078334 (B)
IkarusTrojan.Agent
MAXmalware (ai score=85)
MicrosoftTrojan:Win32/Woreflint.A!cl
ArcabitTrojan.Generic.D2A094FE
ZoneAlarmHEUR:Trojan-Spy.MSIL.Noon.gen
GDataTrojan.GenericKD.44078334
McAfeeArtemis!21CAE8CB7615
PandaTrj/GdSda.A
ESET-NOD32a variant of MSIL/Kryptik.YEW
TrendMicro-HouseCallTROJ_GEN.R002H0CJF20
TencentMsil.Trojan-spy.Noon.Hqvq
FortinetMSIL/Kryptik.YEM!tr
BitDefenderThetaGen:NN.ZemsilF.34570.Im0@aqBbfZj
AVGFileRepMetagen [Malware]
Cybereasonmalicious.8ea9d0
Paloaltogeneric.ml

How to remove MSIL/Kryptik.YEW?

MSIL/Kryptik.YEW removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

Leave a Comment