Malware

MSIL/Kryptik_AGen.ADF malicious file

Malware Removal

The MSIL/Kryptik_AGen.ADF is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What MSIL/Kryptik_AGen.ADF virus can do?

  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • Anomalous .NET characteristics
  • Anomalous binary characteristics

How to determine MSIL/Kryptik_AGen.ADF?



File Info:

name: 58F6A878D2834FE4EF27.mlw
path: /opt/CAPEv2/storage/binaries/d2bd7d282670277d1f8f2f569ef18f889a634c11909d9f157d66837a66618717
crc32: 794C6445
md5: 58f6a878d2834fe4ef2748a6ff34da71
sha1: cd446f562bdb956a358c5230bc9b255356a5565e
sha256: d2bd7d282670277d1f8f2f569ef18f889a634c11909d9f157d66837a66618717
sha512: 206fd2c9f0ba720e68951a329dd6a1760a474cf5313b05ff355dda9fec49f66f5c02c5ddf469a9f091926890a0345bb43de183e8990a7b47db45d5fe40e3a0b0
ssdeep: 12288:hznTdXs1M6tMy8JRwcM3ykuVu9p8KnZKzz+FWgxh0:9heMGMyCRwcGyz08KZKSW2
type: PE32+ executable (GUI) x86-64, for MS Windows
tlsh: T18FA4CFC84AB09BE9ED4F0D3CA0FA94FD6585990ABFCDE5D8C712E2D32521304A41B5DB
sha3_384: 777b1b34878da5e4bc1b1759ecaea4672cde60bf7bc55421482d04f357ee810eed996e261a063d893c2aeeb78e4e820a
ep_bytes: 4d5a90000300000004000000ffff0000
timestamp: 2022-11-13 14:53:31


Version Info:

Translation: 0x0000 0x04b0
FileDescription:  
FileVersion: 0.0.0.0
InternalName: KlotherBlood.exe
LegalCopyright:  
OriginalFilename: KlotherBlood.exe
ProductVersion: 0.0.0.0
Assembly Version: 0.0.0.0

MSIL/Kryptik_AGen.ADF also known as:

LionicTrojan.Win32.Injuke.16!c
MicroWorld-eScanTrojan.GenericKD.63631227
CylanceUnsafe
SangforTrojan.Win32.Agent.Vql1
CrowdStrikewin/malicious_confidence_100% (W)
SymantecML.Attribute.HighConfidence
Elasticmalicious (high confidence)
ESET-NOD32a variant of MSIL/Kryptik_AGen.ADF
APEXMalicious
KasperskyHEUR:Trojan.MSIL.Injuke.gen
AvastWin64:Evo-gen [Trj]
McAfee-GW-EditionArtemis!Trojan
FireEyeGeneric.mg.58f6a878d2834fe4
SophosGeneric PUA MN (PUA)
SentinelOneStatic AI – Malicious PE
GDataWin32.Trojan-Stealer.PSWSteal.LPLDV2
MAXmalware (ai score=83)
ZoneAlarmHEUR:Trojan.MSIL.Injuke.gen
MicrosoftTrojan:Win32/Sabsik.FL.B!ml
CynetMalicious (score: 100)
Acronissuspicious
McAfeeArtemis!58F6A878D283
FortinetPossibleThreat
AVGWin64:Evo-gen [Trj]
Cybereasonmalicious.62bdb9

How to remove MSIL/Kryptik_AGen.ADF?

MSIL/Kryptik_AGen.ADF removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment