Trojan

About “MSIL/TrojanDownloader.Agent.JTA” infection

Malware Removal

The MSIL/TrojanDownloader.Agent.JTA is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware - Review 2020

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
6-day free trial available.

What MSIL/TrojanDownloader.Agent.JTA virus can do?

  • Dynamic (imported) function loading detected
  • CAPE extracted potentially suspicious content
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid

How to determine MSIL/TrojanDownloader.Agent.JTA?


File Info:

name: E12C2A4644D4EC8303C4.mlw
path: /opt/CAPEv2/storage/binaries/82e1f09888e9a5ed93bd6602eca4ab1daef1d6f74e6f1ef24ba6f1b2bc7d2565
crc32: 1664D44C
md5: e12c2a4644d4ec8303c409484ed90240
sha1: c7a206f5bafabb2d7c77c4a0336a25e0526a55ea
sha256: 82e1f09888e9a5ed93bd6602eca4ab1daef1d6f74e6f1ef24ba6f1b2bc7d2565
sha512: 53dc35ab5c7edfa2782562e32ff60369f8997ea1119f10571c78b954f11806b5c3cb392b53b20aaa07448b02474003df2e958b8dccfbc6ed577b731521994631
ssdeep: 24576:qw+5rzT6NGbCwYsYxgG/ju3WjOjQyOfSKKZfytYkc:L+5gwYsegKuRjQdfRKZfytYk
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T120551201B3F46B57F3B863F6443911204BF3396A68B5E3085D9691DD69B0F814AA2F3B
sha3_384: 68d9472e3501a3af11610575ec48f307aa960eb58d8b1c1770cd2ca9f38a9b838e22bb3924533ec62b685f86b9901200
ep_bytes: ff250020400001020304050607080000
timestamp: 2021-12-09 19:46:52

Version Info:

0: [No Data]

MSIL/TrojanDownloader.Agent.JTA also known as:

LionicTrojan.MSIL.Agensla.i!c
DrWebTrojan.PWS.Stealer.31726
MicroWorld-eScanTrojan.GenericKD.38285581
FireEyeTrojan.GenericKD.38285581
CAT-QuickHealTrojanpws.Msil
ALYacTrojan.GenericKD.38285581
CylanceUnsafe
ZillyaDownloader.Agent.Win32.457447
K7AntiVirusTrojan-Downloader ( 0058ba131 )
AlibabaTrojanPSW:MSIL/Agensla.27574fba
K7GWTrojan-Downloader ( 0058ba131 )
CyrenW32/Trojan.CYPN-7793
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of MSIL/TrojanDownloader.Agent.JTA
APEXMalicious
AvastWin32:MalwareX-gen [Trj]
KasperskyHEUR:Trojan-PSW.MSIL.Agensla.gen
BitDefenderTrojan.GenericKD.38285581
Ad-AwareTrojan.GenericKD.38285581
SophosMal/Generic-S
ComodoTrojWare.Win32.Agent.pyzsh@0
TrendMicroTROJ_GEN.R002C0WLA21
EmsisoftTrojan-Downloader.Agent (A)
Paloaltogeneric.ml
GDataTrojan.GenericKD.38285581
JiangminTrojan.PSW.MSIL.dacy
AviraTR/Dldr.Agent.purre
KingsoftWin32.PSWTroj.Undef.(kcloud)
GridinsoftRansom.Win32.Sabsik.vb
ViRobotTrojan.Win32.Z.Agent.1347072.I
MicrosoftTrojan:Win32/Sabsik.FL.B!ml
CynetMalicious (score: 100)
AhnLab-V3Trojan/Win.Generic.C4848033
McAfeeArtemis!E12C2A4644D4
MAXmalware (ai score=88)
VBA32TScope.Trojan.MSIL
MalwarebytesTrojan.Downloader
TrendMicro-HouseCallTROJ_GEN.R002C0WLA21
TencentMsil.Trojan-downloader.Agent.Agkq
YandexTrojan.DL.Agent!EWe9MXe4fQo
SentinelOneStatic AI – Malicious PE
MaxSecureTrojan.Malware.300983.susgen
FortinetMSIL/Agent.JTA!tr.dldr
AVGWin32:MalwareX-gen [Trj]
PandaTrj/GdSda.A
CrowdStrikewin/malicious_confidence_90% (W)

How to remove MSIL/TrojanDownloader.Agent.JTA?

MSIL/TrojanDownloader.Agent.JTA removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment