Malware

MSIL/PSW.Discord.AEE malicious file

Malware Removal

The MSIL/PSW.Discord.AEE is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What MSIL/PSW.Discord.AEE virus can do?

  • Dynamic (imported) function loading detected
  • Authenticode signature is invalid
  • Anomalous binary characteristics
  • Binary compilation timestomping detected

How to determine MSIL/PSW.Discord.AEE?



File Info:

name: 2DFD3900E6001CF52E00.mlw
path: /opt/CAPEv2/storage/binaries/48232537df72969e292d26d836b2e4d4009acb1d54b9419fa3b5bbeb4f4222bf
crc32: 9BC1FD4F
md5: 2dfd3900e6001cf52e000d96580777e0
sha1: 75ff55b8f9cc781d40afb6adf5f72e89d8f29b1c
sha256: 48232537df72969e292d26d836b2e4d4009acb1d54b9419fa3b5bbeb4f4222bf
sha512: e6b1aa6ffd5cf3a96fe6e19803360e2204a2b9debcb3aa83d8fbf32ad09bdce59ff4a67cceb37cf87bf11ae1f563257756f7052b90bde1146d302093104f528a
ssdeep: 384:5mYXwwxDa7R1xA0yQPf4jTByrqPKPEddMWhPReWG9lyZZHbJ:c7Zs4MKPWz4lMZJ
type: PE32+ executable (console) x86-64, for MS Windows
tlsh: T17582D614A7F8C31AEAFF0B3BA8F31E001536BB59AA52DB1E088141959C377850F62772
sha3_384: bef355fb601aa68820e582f4b0717e55d4473fe4c81d06a5547e71241056f44f46c97c4e8cc150907658e9d573fa0d74
ep_bytes: 4d5a90000300000004000000ffff0000
timestamp: 2057-09-23 22:58:41


Version Info:

Translation: 0x0000 0x04b0
CompanyName: TokenRipperCSHAREPV2
FileDescription: TokenRipperCSHAREPV2
FileVersion: 1.0.0.0
InternalName: TokenRipperCSHAREPV2.dll
LegalCopyright:  
OriginalFilename: TokenRipperCSHAREPV2.dll
ProductName: TokenRipperCSHAREPV2
ProductVersion: 1.0.0
Assembly Version: 1.0.0.0

MSIL/PSW.Discord.AEE also known as:

LionicTrojan.MSIL.Disco.i!c
MicroWorld-eScanTrojan.GenericKD.47572316
FireEyeTrojan.GenericKD.47572316
ALYacTrojan.GenericKD.47572316
K7AntiVirusPassword-Stealer ( 0057c7f31 )
AlibabaTrojanPSW:MSIL/Disco.94bba159
K7GWPassword-Stealer ( 0057c7f31 )
SymantecTrojan.Gen.MBT
ESET-NOD32a variant of MSIL/PSW.Discord.AEE
TrendMicro-HouseCallTROJ_GEN.R002C0WL921
KasperskyHEUR:Trojan-PSW.MSIL.Disco.gen
BitDefenderTrojan.GenericKD.47572316
AvastWin64:Trojan-gen
Ad-AwareTrojan.GenericKD.47572316
EmsisoftTrojan.GenericKD.47572316 (B)
TrendMicroTROJ_GEN.R002C0WL921
McAfee-GW-EditionArtemis!Trojan
SophosMal/Generic-S
SentinelOneStatic AI – Malicious PE
AviraTR/Redcap.lbods
MAXmalware (ai score=87)
GDataTrojan.GenericKD.47572316
CynetMalicious (score: 99)
AhnLab-V3Trojan/Win.Generic.C4822363
McAfeeArtemis!2DFD3900E600
VBA32TrojanPSW.MSIL.Disco
FortinetPossibleThreat
AVGWin64:Trojan-gen

How to remove MSIL/PSW.Discord.AEE?

MSIL/PSW.Discord.AEE removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment