Trojan

What is “MSIL/TrojanDownloader.Agent.HKU”?

Malware Removal

The MSIL/TrojanDownloader.Agent.HKU is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What MSIL/TrojanDownloader.Agent.HKU virus can do?

  • Presents an Authenticode digital signature
  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

Related domains:

z.whorecord.xyz
a.tomx.xyz

How to determine MSIL/TrojanDownloader.Agent.HKU?



File Info:

crc32: 2C4C7A6F
md5: 2a61609f1ec744613b47b312a669a9b5
name: 2A61609F1EC744613B47B312A669A9B5.mlw
sha1: 57980d9fd58284a333750f3d9910e98de472f8af
sha256: 5b22b7e042fa71f01a7dbd03752231934e58efe17d7dec0d9e66c5506695e6f1
sha512: 9018e43bfacfa8f94f841b1d16d50c8a5c7a1846ab3b87d60aaf6db30daafdb622b694ae7a6162eaf2d41b1d01e506ac2815c9711b31897e193ef5f2521666cb
ssdeep: 384:5j6gksryR9+10nknX1UfjTQWxPsQJRjtwSvM7ThzN:52K6TA1UfjTQGRjfITh
type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows


Version Info:

LegalCopyright: Copyright 2022 xa9 VjsZvyEI. All rights reserved.
Assembly Version: 5.7.2.6
InternalName: EUgKOxlT.exe
FileVersion: 2.0.3.3
CompanyName: QTvFzLHw
LegalTrademarks: AGBWBIZv
Comments: LxirtHxV
ProductName: EUgKOxlT
ProductVersion: 5.7.2.6
FileDescription: YZGbFour
OriginalFilename: EUgKOxlT.exe
Translation: 0x0409 0x0514

MSIL/TrojanDownloader.Agent.HKU also known as:

Elasticmalicious (high confidence)
FireEyeGeneric.mg.2a61609f1ec74461
McAfeeArtemis!2A61609F1EC7
CylanceUnsafe
SangforTrojan.Win32.Save.a
SymantecML.Attribute.HighConfidence
APEXMalicious
AvastWin32:PWSX-gen [Trj]
KasperskyUDS:DangerousObject.Multi.Generic
McAfee-GW-EditionArtemis!Trojan
KingsoftWin32.Heur.KVM019.a.(kcloud)
MicrosoftTrojan:Win32/Woreflint.A!cl
ZoneAlarmUDS:DangerousObject.Multi.Generic
ESET-NOD32a variant of MSIL/TrojanDownloader.Agent.HKU
RisingDownloader.Agent!8.B23 (CLOUD)
BitDefenderThetaGen:NN.ZemsilF.34574.bm1@aC3kIhci
AVGWin32:PWSX-gen [Trj]
Paloaltogeneric.ml

How to remove MSIL/TrojanDownloader.Agent.HKU?

MSIL/TrojanDownloader.Agent.HKU removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment