Spy

MSIL/Spy.Agent.DAB removal tips

Malware Removal

The MSIL/Spy.Agent.DAB is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What MSIL/Spy.Agent.DAB virus can do?

  • Dynamic (imported) function loading detected
  • Authenticode signature is invalid
  • Anomalous binary characteristics

How to determine MSIL/Spy.Agent.DAB?



File Info:

name: 3045A16EE09AC79BBB6F.mlw
path: /opt/CAPEv2/storage/binaries/7627c10d315c72660d74bae97f04623b7ae55f72b48f8c145e011165be1d4546
crc32: D3C7912F
md5: 3045a16ee09ac79bbb6f68c9a9eab90b
sha1: ff382a6ef20cd21932e1b299c84e734e543cb104
sha256: 7627c10d315c72660d74bae97f04623b7ae55f72b48f8c145e011165be1d4546
sha512: 9a3fb9edc647a67758e52c81bb92901b793e01fde1bf851d87de60b4c1a74cdcf35c7d5321c8b2a679e8d106fff3314342ca01284921f2648c5af95065f26ffe
ssdeep: 3072:jhKZp70mi57Iq+gJTwftXqYu2Ru6Lvp4sdRcxhLOtNsSOFQRqY:qp7Y5h+gKqXIFnk2tN6FEq
type: PE32+ executable (console) x86-64, for MS Windows
tlsh: T15B24E0866359881AFF72453C38FB67180336FDC3FD54A60B3598328C2F76B8A5552A86
sha3_384: ec6bb391cc80a951886199432ef47a58793f7fa26f458cd8c49d37b4ae92d88de0830c363ed0e69d4df5b84490f57513
ep_bytes: 4d5a90000300000004000000ffff0000
timestamp: 2020-09-23 16:24:59


Version Info:

Translation: 0x0000 0x04b0
Comments: 
CompanyName: 
FileDescription: Steam Client WebHelper
FileVersion: 1.0.0.0
InternalName: Steam Client Updater.exe
LegalCopyright: Copyright ©  2015
LegalTrademarks: 
OriginalFilename: Steam Client Updater.exe
ProductName: Steam Updater
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

MSIL/Spy.Agent.DAB also known as:

LionicTrojan.Win32.Generic.4!c
Elasticmalicious (high confidence)
MicroWorld-eScanTrojan.GenericKD.38115803
FireEyeGeneric.mg.3045a16ee09ac79b
ALYacTrojan.GenericKD.38115803
ZillyaTrojan.Agent.Win32.1433899
K7AntiVirusSpyware ( 0056fc4e1 )
AlibabaTrojan:MSIL/Generic.f188bc81
K7GWSpyware ( 0056fc4e1 )
ESET-NOD32a variant of MSIL/Spy.Agent.DAB
APEXMalicious
Paloaltogeneric.ml
ClamAVWin.Packed.Bulz-9856610-0
BitDefenderTrojan.GenericKD.38115803
SUPERAntiSpywareTrojan.Agent/Gen-Dropper
AvastWin64:Trojan-gen
Ad-AwareTrojan.GenericKD.38115803
EmsisoftTrojan.GenericKD.38115803 (B)
IkarusTrojan.MSIL.Spy
GDataTrojan.GenericKD.38115803
AviraHEUR/AGEN.1143992
MAXmalware (ai score=81)
GridinsoftRansom.Win64.Sabsik.sa
MicrosoftTrojan:Win32/Sabsik.FL.B!ml
CynetMalicious (score: 100)
McAfeeArtemis!3045A16EE09A
MalwarebytesSpyware.PasswordStealer
TrendMicro-HouseCallTROJ_GEN.R002H0AKP21
SentinelOneStatic AI – Suspicious PE
FortinetMSIL/Agent.DAB!tr.spy
AVGWin64:Trojan-gen
CrowdStrikewin/malicious_confidence_60% (W)

How to remove MSIL/Spy.Agent.DAB?

MSIL/Spy.Agent.DAB removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment