Malware

MSIL:GenMalicious-ZH [Trj] information

Malware Removal

The MSIL:GenMalicious-ZH [Trj] is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
6-day free trial available.

What MSIL:GenMalicious-ZH [Trj] virus can do?

  • The binary likely contains encrypted or compressed data.
  • Network activity detected but not expressed in API logs

Related domains:

z.whorecord.xyz
a.tomx.xyz

How to determine MSIL:GenMalicious-ZH [Trj]?


File Info:

crc32: D6BFE29A
md5: 7480052cb1d8d77c5f60c2899ee53f54
name: 7480052CB1D8D77C5F60C2899EE53F54.mlw
sha1: 5afa5dcea27a7cf9f35f5423a3bad2d67203866e
sha256: c42ef76ece34e202d8fd0556771dc0f1982bdc2e878e5733b75e631358fea5ad
sha512: 295b86bba91d62f2ae4f907b88e9f5b31f5df59d56cae540eb320470bf5c14e4d9094b50008cdc4dff87cdd9650c9eced58a3d69343ccc89bc5d8f951d687a87
ssdeep: 3072:NRFE89UVjmMFAzkAghHDLcxQjntGKph5CxID4afYFhrrDn:h0jmjwHIxknt9Ci5fGL
type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows

Version Info:

0: [No Data]

MSIL:GenMalicious-ZH [Trj] also known as:

K7AntiVirusTrojan ( 005654ab1 )
LionicTrojan.MSIL.SpyGate.m!c
Elasticmalicious (high confidence)
DrWebTrojan.Encoder.3953
CynetMalicious (score: 100)
ALYacTrojan.Ransomware.GenericKDS.42864694
CylanceUnsafe
ZillyaTrojan.Kryptik.Win32.1968533
CrowdStrikewin/malicious_confidence_100% (D)
K7GWTrojan ( 005654ab1 )
Cybereasonmalicious.cb1d8d
CyrenW32/MSIL_Kryptik.WM.gen!Eldorado
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of MSIL/Kryptik.SXL
APEXMalicious
AvastMSIL:GenMalicious-ZH [Trj]
KasperskyHEUR:Backdoor.MSIL.SpyGate.gen
BitDefenderTrojan.Ransomware.GenericKDS.42864694
NANO-AntivirusTrojan.Win32.SpyGate.hhkzda
MicroWorld-eScanTrojan.Ransomware.GenericKDS.42864694
TencentMsil.Backdoor.Spygate.Ahem
Ad-AwareTrojan.Ransomware.GenericKDS.42864694
BitDefenderThetaGen:NN.ZemsilF.34266.omW@a0lv!Pf
VIPRETrojan.Win32.Generic!BT
McAfee-GW-EditionBehavesLike.Win32.Generic.dh
FireEyeGeneric.mg.7480052cb1d8d77c
EmsisoftTrojan.Crypt (A)
SentinelOneStatic AI – Malicious PE
WebrootW32.Trojan.Gen
AviraHEUR/AGEN.1125867
eGambitUnsafe.AI_Score_99%
MicrosoftTrojan:Win32/Occamy.CC4
ArcabitTrojan.Ransomware.GenericS.D28E1036
GDataTrojan.Ransomware.GenericKDS.42864694
AhnLab-V3Trojan/Win32.Injector.C2777939
McAfeeGenericRXKP-RX!7480052CB1D8
MAXmalware (ai score=80)
VBA32TScope.Trojan.MSIL
MalwarebytesTrojan.MSCrypt.MSIL.Generic
PandaTrj/Ransom.J
IkarusTrojan.MSIL.Crypt
MaxSecureTrojan.Malware.300983.susgen
FortinetMSIL/CoinMiner.SHS!tr
AVGMSIL:GenMalicious-ZH [Trj]
Paloaltogeneric.ml

How to remove MSIL:GenMalicious-ZH [Trj]?

MSIL:GenMalicious-ZH [Trj] removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment