Spy

MSIL/Spy.Keylogger.CEP malicious file

Malware Removal

The MSIL/Spy.Keylogger.CEP is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What MSIL/Spy.Keylogger.CEP virus can do?

  • Dynamic (imported) function loading detected
  • CAPE extracted potentially suspicious content
  • Authenticode signature is invalid
  • Binary compilation timestomping detected

How to determine MSIL/Spy.Keylogger.CEP?



File Info:

name: A6409C9795DA5DE05747.mlw
path: /opt/CAPEv2/storage/binaries/209bf4562bbbe8ac152e1b24d34d9fa77a202746c0064f1226eeee0d1ab91ff8
crc32: 14171658
md5: a6409c9795da5de05747d8b81b6c133e
sha1: 6462404b8281d1ace8f6da2a8a4f8e59b5f94ff8
sha256: 209bf4562bbbe8ac152e1b24d34d9fa77a202746c0064f1226eeee0d1ab91ff8
sha512: a40a188b2e2e18d30756f2373a27519c6cfa70525fa6bb0c4bfdfb49e5071b0b904e6ef401e1f6d9d6e937feb8cb238bac6844fdfce1f39502a2298cf0c0b58e
ssdeep: 96:ZTdxFVjgysb1cP9yza9VeKDfcWJVS4EB9XYzNt:ZTBVjgpCP9yueKDcWJVS4E7X6
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T16AD1818AD7E80A73DCFA4B31AD7343010BB4E7619D67DB9F2885831B2E121060962AA5
sha3_384: add16bf9e11fc76734f7a25f99c9839eccd09b9dc309f5db9b675419b27c05c0b74bca699ba50f2f86a560eebf8b25f3
ep_bytes: ff250020400000000000000000000000
timestamp: 2061-12-19 03:21:58


Version Info:

Translation: 0x0000 0x04b0
Comments: 
CompanyName: 
FileDescription: zajecia 8.01.2021
FileVersion: 1.0.0.0
InternalName: zajecia 8.01.2021.exe
LegalCopyright: Copyright ©  2021
LegalTrademarks: 
OriginalFilename: zajecia 8.01.2021.exe
ProductName: zajecia 8.01.2021
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

MSIL/Spy.Keylogger.CEP also known as:

LionicTrojan.Win32.Generic.4!c
Elasticmalicious (high confidence)
MicroWorld-eScanTrojan.GenericKD.38198066
McAfeeRDN/Generic PWS.y
CylanceUnsafe
K7AntiVirusSpyware ( 00513fb31 )
AlibabaTrojan:MSIL/KeyloggerX.9c8dec6f
K7GWSpyware ( 00513fb31 )
Cybereasonmalicious.b8281d
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of MSIL/Spy.Keylogger.CEP
APEXMalicious
Paloaltogeneric.ml
KasperskyHEUR:Trojan.MSIL.Agent.gen
BitDefenderTrojan.GenericKD.38198066
AvastWin32:KeyloggerX-gen [Trj]
Ad-AwareTrojan.GenericKD.38198066
EmsisoftTrojan.GenericKD.38198066 (B)
TrendMicroTROJ_GEN.R002C0WL921
McAfee-GW-EditionRDN/Generic PWS.y
FireEyeGeneric.mg.a6409c9795da5de0
SophosMal/Generic-S
IkarusTrojan.MSIL.Spy
GDataWin32.Trojan.Agent.4Y8XSC
MaxSecureTrojan.Malware.300983.susgen
AviraHEUR/AGEN.1206859
GridinsoftRansom.Win32.Sabsik.sa
ArcabitTrojan.Generic.D246DB32
MicrosoftTrojan:Win32/Sabsik.TE.B!ml
CynetMalicious (score: 99)
BitDefenderThetaGen:NN.ZemsilF.34084.am0@aeKfvCd
ALYacTrojan.GenericKD.38198066
MAXmalware (ai score=85)
TrendMicro-HouseCallTROJ_GEN.R002C0WL921
SentinelOneStatic AI – Suspicious PE
FortinetMSIL/Generic.AP.98DA00!tr
AVGWin32:KeyloggerX-gen [Trj]
PandaTrj/GdSda.A
CrowdStrikewin/malicious_confidence_60% (W)

How to remove MSIL/Spy.Keylogger.CEP?

MSIL/Spy.Keylogger.CEP removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment