Trojan

MSIL/TrojanDownloader.Small.BGT removal

Malware Removal

The MSIL/TrojanDownloader.Small.BGT is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What MSIL/TrojanDownloader.Small.BGT virus can do?

  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • Dynamic (imported) function loading detected
  • CAPE extracted potentially suspicious content
  • Drops a binary and executes it
  • Authenticode signature is invalid

How to determine MSIL/TrojanDownloader.Small.BGT?



File Info:

name: 19FD30F7D1CF8FDFAF32.mlw
path: /opt/CAPEv2/storage/binaries/3e98c6d90aa8f7c1c4e14cea3b44069e6885329db90e4768fef7ea8bf44d4bbb
crc32: CEA5CA4E
md5: 19fd30f7d1cf8fdfaf321a1c51e835c4
sha1: db390851e8c9f0e4e2b41d273babd2414de418c2
sha256: 3e98c6d90aa8f7c1c4e14cea3b44069e6885329db90e4768fef7ea8bf44d4bbb
sha512: 80704999269421e0cf4f53f3a4437712a000e5feb861131646e5ce738d72d9e5c541b71a27e4aa8c48e1f6ba321bdb87d9d2b7a0435064d59ac4216d5df2c00e
ssdeep: 24576:NAHnh+eWsN3skA4RV1Hom2KXMmHaXt+OXrmm/Ip5:sh+ZkldoPK8YaXbXrdK
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1A8259D0273D1C036FFABA2739B6AF60156BD79254123852F13981DB9BD701B2273E663
sha3_384: b834c0744b76202d123e4ccd5fd54878cc17d7702c4ba4e98890f8dd6633070e8d2723f5e6b93527530de482e01ef59f
ep_bytes: e8c8d00000e97ffeffffcccccccccccc
timestamp: 2020-11-22 16:51:30


Version Info:

Translation: 0x0809 0x04b0

MSIL/TrojanDownloader.Small.BGT also known as:

BkavW32.AIDetect.malware2
LionicHacktool.Win32.Gamehack.3!e
MicroWorld-eScanTrojan.GenericKD.35440617
FireEyeGeneric.mg.19fd30f7d1cf8fdf
ALYacTrojan.GenericKD.35440617
CylanceUnsafe
K7AntiVirusTrojan-Downloader ( 00518a491 )
AlibabaBackdoor:MSIL/Bladabindi.f08c07c6
K7GWTrojan-Downloader ( 00518a491 )
CrowdStrikewin/malicious_confidence_90% (W)
BitDefenderThetaGen:NN.ZemsilF.34212.bq0@am8u09l
VirITTrojan.Win32.Stealer.BMFU
CyrenW32/AutoIt.TB.gen!Eldorado
ESET-NOD32a variant of MSIL/TrojanDownloader.Small.BGT
Paloaltogeneric.ml
KasperskyHEUR:Backdoor.MSIL.Bladabindi.gen
BitDefenderTrojan.GenericKD.35440617
NANO-AntivirusTrojan.Win32.Bladabindi.ihgjbo
APEXMalicious
Ad-AwareTrojan.GenericKD.35440617
SophosGeneric ML PUA (PUA)
ComodoMalware@#25cia6sr7g4qn
McAfee-GW-EditionBehavesLike.Win32.TrojanAitInject.dh
EmsisoftTrojan.GenericKD.35440617 (B)
GDataTrojan.GenericKD.35440617
AviraHEUR/AGEN.1204077
MAXmalware (ai score=87)
ArcabitTrojan.Generic.D21CC7E9
MicrosoftVirTool:Win32/Tiggre!rfn
CynetMalicious (score: 99)
McAfeeArtemis!19FD30F7D1CF
VBA32Backdoor.MSIL.Bladabindi
MalwarebytesMachineLearning/Anomalous.95%
AvastWin32:Trojan-gen
RisingTrojan.Generic/MSIL@AI.98 (RDM.MSIL:BxQgnU/Eq6wfh12BQZT9xQ)
MaxSecureTrojan.Malware.300983.susgen
FortinetMSIL/Small.BGT!tr.dldr
AVGWin32:Trojan-gen

How to remove MSIL/TrojanDownloader.Small.BGT?

MSIL/TrojanDownloader.Small.BGT removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment