Malware

What is “MSILHeracles.1274”?

Malware Removal

The MSILHeracles.1274 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What MSILHeracles.1274 virus can do?

  • CAPE extracted potentially suspicious content
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • Binary compilation timestomping detected

How to determine MSILHeracles.1274?



File Info:

name: 936C8F0AE894CB3E89B6.mlw
path: /opt/CAPEv2/storage/binaries/8778e837d948b9dc28b2f8a2b9cfc13521ecd43b320ba9532e72270baac20e2e
crc32: 1ABD8800
md5: 936c8f0ae894cb3e89b67480a0bef741
sha1: d5f825eb2009d263f4352fac5f06db19d2e5070e
sha256: 8778e837d948b9dc28b2f8a2b9cfc13521ecd43b320ba9532e72270baac20e2e
sha512: 5f517ec7b60b9e976c5b63eefadc22a45fe1fd7a726d41c169f84fb216bd45c18ccae4b80a0c9ed147306adfc9c90f668ef9c91d282e92147383a57839aeca3e
ssdeep: 24576:rcIGqfNWeD0DblejAXHiA4qfNWeD0DblejAXJ0cuUQPXRd6C:AIFY3lV5vY3lBYRUC
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1C035234452E89762EB7647FD6AAE220557B2D24B3041E32C8DC730DE5AE2F149BD0F63
sha3_384: 981c087d6c1cced00e923049ba6735596a8570045446518df8d211e722ab1038fd946c3e49045c2f54ac99022a92f21e
ep_bytes: ff250020400000000000000000000000
timestamp: 2101-08-22 12:26:38


Version Info:

Translation: 0x0000 0x04b0
Comments: Echo Gaming
CompanyName: 
FileDescription: Echo Roleplay
FileVersion: 2.0.0.0
InternalName: Echo Roleplay.exe
LegalCopyright: Copyright CSedat ©  2020
LegalTrademarks: 
OriginalFilename: Echo Roleplay.exe
ProductName: Echo Roleplay
ProductVersion: 2.0.0.0
Assembly Version: 2.0.0.0

MSILHeracles.1274 also known as:

LionicTrojan.Win32.Heracles.4!c
Elasticmalicious (moderate confidence)
MicroWorld-eScanGen:Variant.MSILHeracles.1274
FireEyeGen:Variant.MSILHeracles.1274
McAfeeArtemis!936C8F0AE894
CrowdStrikewin/malicious_confidence_60% (W)
ArcabitTrojan.MSILHeracles.D4FA
APEXMalicious
BitDefenderGen:Variant.MSILHeracles.1274
EmsisoftGen:Variant.MSILHeracles.1274 (B)
VIPREGen:Variant.MSILHeracles.1274
McAfee-GW-EditionBehavesLike.Win32.Generic.tc
MAXmalware (ai score=83)
GDataGen:Variant.MSILHeracles.1274
CynetMalicious (score: 100)
ALYacGen:Variant.MSILHeracles.1274
Cylanceunsafe
TrendMicro-HouseCallTROJ_GEN.R002H09FJ23
DeepInstinctMALICIOUS

How to remove MSILHeracles.1274?

MSILHeracles.1274 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment