Trojan

What is “MSIL/TrojanDownloader.Agent.JMR”?

Malware Removal

The MSIL/TrojanDownloader.Agent.JMR is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What MSIL/TrojanDownloader.Agent.JMR virus can do?

  • Presents an Authenticode digital signature
  • Dynamic (imported) function loading detected
  • CAPE extracted potentially suspicious content
  • Authenticode signature is invalid
  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

Related domains:

wpad.local-net

How to determine MSIL/TrojanDownloader.Agent.JMR?



File Info:

name: 78CB0C6298D5B2B21935.mlw
path: /opt/CAPEv2/storage/binaries/a9aca7ba092ed61929359feca0276dfaa50568cdffd375f828033160f5e70166
crc32: 93BA2C65
md5: 78cb0c6298d5b2b2193578c8cb7bfa36
sha1: 540c1fd6c55179d19afbb806a4eb565407b08589
sha256: a9aca7ba092ed61929359feca0276dfaa50568cdffd375f828033160f5e70166
sha512: 1a16f77ca94df210c478d45acd604be9442902b7b3477285cb152a4cb9516f1f4ab6dcaeb48a9bd1d2f21967927fa121001020865321d61e1ac79f44e2aa75b9
ssdeep: 3072:5WkHyHeO8Qe8nGL8ntf9RuuuEEXEZOtSqo+IspOgsiECsiEu:5Way7xe8NEo+IsI35u
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T10EB4B3D6FE0CB1C5E4A009FE7C7276C32665EDD23672831A3D88B31BDE756605D480AA
sha3_384: 97ea60298bc83cf7ce8cbcb5fb915abd72de9c9076d9cca5ca911b128e3524686d493dbbbe501098e4e7c754ed01a3dd
ep_bytes: ff250020400000000000000000000000
timestamp: 2021-11-15 11:21:05


Version Info:

CompanyName: 
FileTitle: door_c.exe
FileDescription: MyNoteApp
FileVersion: 1,0,0,0
LegalCopyright: Copyright В©  2020
LegalTrademark: 
ProductName: MyNoteApp
ProductVersion: 1,0,0,0
Translation: 0x0409 0x04b0

MSIL/TrojanDownloader.Agent.JMR also known as:

DrWebTrojan.PWS.Stealer.31482
MicroWorld-eScanTrojan.GenericKD.47511609
FireEyeGeneric.mg.78cb0c6298d5b2b2
McAfeeRDN/Generic Downloader.x
K7AntiVirusTrojan-Downloader ( 0058acf61 )
AlibabaTrojanDownloader:MSIL/Seraph.47cf535b
K7GWTrojan-Downloader ( 0058acf61 )
Cybereasonmalicious.6c5517
BitDefenderThetaGen:NN.ZemsilF.34294.Em3@ae7IPRpi
SymantecML.Attribute.HighConfidence
ESET-NOD32MSIL/TrojanDownloader.Agent.JMR
TrendMicro-HouseCallTROJ_GEN.R03FC0WKQ21
Paloaltogeneric.ml
KasperskyHEUR:Trojan-Downloader.MSIL.Seraph.gen
BitDefenderTrojan.GenericKD.47511609
AvastWin32:Trojan-gen
TencentMsil.Trojan-downloader.Agent.Akfr
Ad-AwareTrojan.GenericKD.47511609
EmsisoftTrojan.GenericKD.47511609 (B)
TrendMicroTROJ_GEN.R03FC0WKQ21
McAfee-GW-EditionRDN/Generic Downloader.x
SophosMal/Generic-S
GDataTrojan.GenericKD.47511609
AviraTR/Dldr.Agent.govux
MAXmalware (ai score=85)
MicrosoftTrojan:Win32/Wacatac.B!ml
CynetMalicious (score: 99)
VBA32TScope.Trojan.MSIL
ALYacTrojan.GenericKD.47477732
IkarusTrojan-Downloader.MSIL.Agent
FortinetMSIL/Agent.JMR!tr.dldr
AVGWin32:Trojan-gen
PandaTrj/GdSda.A
CrowdStrikewin/malicious_confidence_100% (W)

How to remove MSIL/TrojanDownloader.Agent.JMR?

MSIL/TrojanDownloader.Agent.JMR removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment