MSIL/Spy.Keylogger.DTK malicious file

The MSIL/Spy.Keylogger.DTK is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What MSIL/Spy.Keylogger.DTK virus can do?

Dynamic (imported) function loading detected
Authenticode signature is invalid

How to determine MSIL/Spy.Keylogger.DTK?


File Info:
name: 16C7DFCB18938C665A19.mlw
path: /opt/CAPEv2/storage/binaries/aea2980d7c724e1f7cdea06127b5d601ebf86c77784a59c4fb0b19a70870cc71
crc32: CAD642A2
md5: 16c7dfcb18938c665a196d9386d1ff66
sha1: 5e66b320c2aa2ca163206eddaf5b02196498f047
sha256: aea2980d7c724e1f7cdea06127b5d601ebf86c77784a59c4fb0b19a70870cc71
sha512: d63f93a6d072381423aa1ee8cf4cd5c35705d4a44580db5ca725062deffadeed55b7e395353998566d7cdfbc4fc5345e2f312809a04d84634959c0e3a3d3ad82
ssdeep: 768:waCHCi+qzGxQ5rBPziR3BeZpF9BkxAj5Tb6X:BCHt+qqxQ4BeN9eqlTuX
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T1EDF2E6086FE6D61BCA5D2BBD40E00104137CED53A643FB425BE854B96A2F7B54AC21BF
sha3_384: 83268b8fcac07d8ea57644f541a059c97e260eabe106565beda9a7de9e02ec7c60c76d1bf618d926af6ed6d349a0ce00
ep_bytes: ff250020400000000000000000000000
timestamp: 2022-02-03 02:39:38

Version Info:
0: [No Data]

MSIL/Spy.Keylogger.DTK also known as:

MicroWorld-eScan	Trojan.GenericKD.38874670
FireEye	Generic.mg.16c7dfcb18938c66
CAT-QuickHeal	Trojan.MsilFC.S23213685
McAfee	GenericRXRQ-QN!16C7DFCB1893
K7AntiVirus	Spyware ( 0057f4801 )
Alibaba	Trojan:MSIL/Generic.4eaab76a
K7GW	Spyware ( 0057f4801 )
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of MSIL/Spy.Keylogger.DTK
Paloalto	generic.ml
BitDefender	Trojan.GenericKD.38874670
Avast	Win32:SpywareX-gen [Trj]
Emsisoft	Trojan.GenericKD.38874670 (B)
McAfee-GW-Edition	Artemis!Trojan
Sophos	Mal/Generic-S
APEX	Malicious
MAX	malware (ai score=84)
Microsoft	Trojan:Win32/Sabsik.TE.B!ml
GData	Trojan.GenericKD.38874670
ALYac	Trojan.GenericKD.38874670
Ikarus	Trojan.MSIL.Spy
SentinelOne	Static AI – Suspicious PE
Fortinet	MSIL/Keylogger.DTK!tr.spy
AVG	Win32:SpywareX-gen [Trj]

How to remove MSIL/Spy.Keylogger.DTK?

MSIL/Spy.Keylogger.DTK removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X