Malware

How to remove “MSIL/Kryptik.YXI”?

Malware Removal

The MSIL/Kryptik.YXI is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What MSIL/Kryptik.YXI virus can do?

  • The binary likely contains encrypted or compressed data.
  • Network activity detected but not expressed in API logs

How to determine MSIL/Kryptik.YXI?



File Info:

crc32: D16FB833
md5: 1fb881e6fc8d962365bb33272a6cf61e
name: 1FB881E6FC8D962365BB33272A6CF61E.mlw
sha1: a836470b5895df51789b2db777347cfed5db1a4f
sha256: 8d56166ca0aad5f4e1ed90c2113b5f128d805846caa456fdaf03e0591e638417
sha512: 20edaa03b527376e4a4bec6756278cfaae46c81f20c7db2147acf8026ad51cc5cdb6f39ba61fc76531203b9dbefdd61f974bd09f89a1753a678eac55467c0e2a
ssdeep: 24576:nHQexlI9Fi2yDKuxqBJ1PqrmhcDjEhbB8KIbLJDQPJaZpphkKxzLnST0sDd:wrb6KuxqBJ1Pqrmhcsj8nbMWpFxzLST
type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows


Version Info:

Translation: 0x0000 0x04b0
LegalCopyright: Copyright xa9  2019 SSe
Assembly Version: 4.0.0.0
InternalName: Empty.exe
FileVersion: 4.0.0.0
CompanyName: SSe limited
LegalTrademarks: 
Comments: 
ProductName: Hospital_Management_System
ProductVersion: 4.0.0.0
FileDescription: Hospital_Management_System
OriginalFilename: Empty.exe

MSIL/Kryptik.YXI also known as:

Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Strictor.94570
ALYacGen:Variant.Strictor.94570
CylanceUnsafe
BitDefenderGen:Variant.Strictor.94570
ArcabitTrojan.Strictor.D1716A
BitDefenderThetaGen:NN.ZemsilF.34670.xn0@aCj6PXd
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of MSIL/Kryptik.YXI
APEXMalicious
Paloaltogeneric.ml
KasperskyHEUR:Trojan-PSW.MSIL.Agensla.gen
Ad-AwareGen:Variant.Strictor.94570
EmsisoftGen:Variant.Strictor.94570 (B)
F-SecureHeuristic.HEUR/AGEN.1138648
TrendMicroTrojan.MSIL.MALREP.THLODBO
McAfee-GW-EditionArtemis!Trojan
FireEyeGeneric.mg.1fb881e6fc8d9623
SophosMal/Generic-S
IkarusWin32.Outbreak
AviraHEUR/AGEN.1138648
KingsoftWin32.Troj.Undef.(kcloud)
MicrosoftTrojan:Win32/Wacatac.B!ml
ZoneAlarmHEUR:Trojan-PSW.MSIL.Agensla.gen
GDataGen:Variant.Strictor.94570
CynetMalicious (score: 100)
McAfeePWS-FCTY!1FB881E6FC8D
MAXmalware (ai score=84)
VBA32CIL.HeapOverride.Heur
MalwarebytesTrojan.Crypt.MSIL
TrendMicro-HouseCallTrojan.MSIL.MALREP.THLODBO
SentinelOneStatic AI – Suspicious PE
FortinetMalicious_Behavior.SB
AVGFileRepMetagen [Malware]
Cybereasonmalicious.6fc8d9
Qihoo-360Generic/Trojan.PSW.374

How to remove MSIL/Kryptik.YXI?

MSIL/Kryptik.YXI removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment