The MSIL/Spy.Agent.BMA is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.
What MSIL/Spy.Agent.BMA virus can do?
File Info:
crc32: 0AFF730Dmd5: 20cd1547ac6d87137b8baa9c5bc727dcname: 20CD1547AC6D87137B8BAA9C5BC727DC.mlwsha1: 257dc7fd31c94768d9fe13f6e003c91e9024487csha256: a539903dce21478db0f908273856ee944f2e1074e3a07103e4426ba5751f6788sha512: 97db3b4d82266787fccc94d8c930d12ad5e031084ad278abff28c5b33caffbc246f98b64649abb18d8e2186e1824e0e11fe9f29e5123fb8eb28502f7f1774e4essdeep: 384:csQEYVJlP+1ELki9pXqUR0MBwJW5uqMy7GjG:csQEYVJlWIkKRZw1qMMRtype: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS WindowsVersion Info:
Translation: 0x0000 0x04b0LegalCopyright: Microsoft Corporation. All rights reserved xa9Assembly Version: 10.0.16299.15InternalName: svchost.exeFileVersion: 10.0.16299.15CompanyName: LegalTrademarks: Comments: x5eax5d4x5dcx5d9x5da x5dex5d0x5e8x5d7 x5e2x5d1x5d5x5e8 x5e9x5d9x5e8x5d5x5eax5d9 WindowsProductName: x5eax5d4x5dcx5d9x5da x5dex5d0x5e8x5d7 x5e2x5d1x5d5x5e8 x5e9x5d9x5e8x5d5x5eax5d9 WindowsProductVersion: 10.0.16299.15FileDescription: svchostOriginalFilename: svchost.exe
Elastic | malicious (high confidence) |
Cynet | Malicious (score: 99) |
ALYac | Gen:Variant.Ransom.PassCrypt.1 |
Sangfor | Trojan.Win32.Save.a |
Cybereason | malicious.7ac6d8 |
Cyren | W32/Trojan.DIS.gen!Eldorado |
Symantec | Trojan.Gen.MBT |
ESET-NOD32 | a variant of MSIL/Spy.Agent.BMA |
APEX | Malicious |
Avast | Win32:GenMaliciousA-VFO [Trj] |
BitDefender | Gen:Variant.Ransom.PassCrypt.1 |
NANO-Antivirus | Trojan.Win32.Fkm.ezfyiu |
MicroWorld-eScan | Gen:Variant.Ransom.PassCrypt.1 |
Tencent | Win32.Trojan.Ransom.Hqlx |
Ad-Aware | Gen:Variant.Ransom.PassCrypt.1 |
Comodo | Malware@#n61tphrlyfl2 |
BitDefenderTheta | Gen:NN.ZemsilF.34722.am0@aucWyVf |
VIPRE | Trojan.Win32.Generic!BT |
FireEye | Generic.mg.20cd1547ac6d8713 |
Emsisoft | Gen:Variant.Ransom.PassCrypt.1 (B) |
SentinelOne | Static AI – Suspicious PE |
Avira | TR/Crypt.FKM.xhapg |
eGambit | Unsafe.AI_Score_99% |
Antiy-AVL | Trojan/Generic.ASMalwS.2522077 |
Microsoft | Backdoor:Win32/Bladabindi!ml |
Arcabit | Trojan.Ransom.PassCrypt.1 |
AegisLab | Trojan.Win32.Generic.4!c |
GData | Gen:Variant.Ransom.PassCrypt.1 |
AhnLab-V3 | Trojan/Win32.Skeeyah.C2476476 |
McAfee | Artemis!20CD1547AC6D |
MAX | malware (ai score=94) |
VBA32 | Trojan.MSIL.gen.a.1 |
Malwarebytes | Trojan.Crypt.Generic |
Panda | Trj/GdSda.A |
Yandex | TrojanSpy.Agent!RTwUZEyxZ3w |
Ikarus | Trojan-Downloader.MSIL.Small |
Fortinet | MSIL/Agent.BMA!tr.spy |
AVG | Win32:GenMaliciousA-VFO [Trj] |
Paloalto | generic.ml |
The MSIL/GenKryptik.GXIZ is considered dangerous by lots of security experts. When this infection is active,…
The Malware.AI.2789448175 is considered dangerous by lots of security experts. When this infection is active,…
The Jalapeno.1878 is considered dangerous by lots of security experts. When this infection is active,…
The Trojan.Heur3.LPT.YmKfaKBcBekib is considered dangerous by lots of security experts. When this infection is active,…
The Worm.Win32.Vobfus.exmt is considered dangerous by lots of security experts. When this infection is active,…
The TrojanDownloader:Win32/Beebone.JO is considered dangerous by lots of security experts. When this infection is active,…