Malware

MSIL:GenMalicious-BJR [Trj] removal tips

Malware Removal

The MSIL:GenMalicious-BJR [Trj] is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What MSIL:GenMalicious-BJR [Trj] virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Reads data out of its own binary image
  • CAPE extracted potentially suspicious content
  • The binary contains an unknown PE section name indicative of packing
  • .NET file is packed/obfuscated with SmartAssembly
  • Authenticode signature is invalid

How to determine MSIL:GenMalicious-BJR [Trj]?



File Info:

name: EF6AB7DE35364A43126F.mlw
path: /opt/CAPEv2/storage/binaries/e5cba7ebe9f834d67328367fbb19d0ea91c238e506a89e7b6cb94304d7ab9fb7
crc32: 84853384
md5: ef6ab7de35364a43126f1ce17f381910
sha1: 0b7b4827fea897e5740faa1e22e3ebe8f64a8285
sha256: e5cba7ebe9f834d67328367fbb19d0ea91c238e506a89e7b6cb94304d7ab9fb7
sha512: 6bf7a319a07a7e026c5ae23f74feff9b442fb04aa5fa07bb41f0b2991a87ff8be8593cb838eb7610e9267da4bcff38eca17f93e854e6c2a6a9be95a4eb1d7f1d
ssdeep: 6144:uUZl4gz9xP1CHyNWGEvFk0N1a6GXilduL4Gz8U9CzDtwN7ktw7fjVBtDiaVh2J22:uA3xgHp5J6j9CAqwDjpHVh2UXCyy
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1CD748E8FB2A4E712CE0C0633C0E375780375EF9A2A32DB6E359C17191E627D5DD0996A
sha3_384: 8ac4e241fa3655912f2e019ba9f9a92a22e96688b750d550fac4d6947bafa2b2bb1c360df47a6e52018349b9986ee996
ep_bytes: ff250020400000000000000000000000
timestamp: 2015-08-28 23:07:13


Version Info:

Translation: 0x0000 0x04b0
FileDescription: WindowsApplication1
FileVersion: 1.0.0.0
InternalName: WindowsApplication1.exe
LegalCopyright: Copyright ©  2015
OriginalFilename: WindowsApplication1.exe
ProductName: WindowsApplication1
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

MSIL:GenMalicious-BJR [Trj] also known as:

BkavW32.AIDetectNet.01
LionicHeuristic.File.Generic.00×1!p
FireEyeGeneric.mg.ef6ab7de35364a43
CylanceUnsafe
SangforSuspicious.Win32.Save.a
Cybereasonmalicious.7fea89
SymantecML.Attribute.HighConfidence
Elasticmalicious (high confidence)
ESET-NOD32a variant of MSIL/Injector.AKV
APEXMalicious
CynetMalicious (score: 100)
KasperskyUDS:DangerousObject.Multi.Generic
NANO-AntivirusTrojan.Win32.MlwGen.dwymjn
AvastMSIL:GenMalicious-BJR [Trj]
TencentWin32.Trojan.ATRAPS.Rsmw
ComodoMalware@#mdsyvxvh7m5y
McAfee-GW-EditionArtemis!Trojan
Trapminemalicious.high.ml.score
SophosML/PE-A
SentinelOneStatic AI – Malicious PE
AviraTR/ATRAPS.Gen
KingsoftWin32.Troj.GenericKD.v.(kcloud)
MicrosoftTrojan:Win32/Skeeyah.A!rfn
GoogleDetected
AhnLab-V3Trojan/Win32.Bladabindi.C734903
McAfeeArtemis!EF6AB7DE3536
MalwarebytesPUP.Optional.Amonetize
RisingTrojan.Generic@AI.98 (RDML:42tRwC6Hebrpi9WRvpaDDw)
IkarusTrojan.MSIL.Injector
MaxSecureTrojan.Malware.300983.susgen
FortinetMSIL/AKV!tr
BitDefenderThetaGen:NN.ZemsilF.34646.wq0@aK44LIe
AVGMSIL:GenMalicious-BJR [Trj]
PandaTrj/CI.A
CrowdStrikewin/malicious_confidence_90% (W)

How to remove MSIL:GenMalicious-BJR [Trj]?

MSIL:GenMalicious-BJR [Trj] removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment