What is “MSILHeracles.146413”?

The MSILHeracles.146413 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What MSILHeracles.146413 virus can do?

CAPE extracted potentially suspicious content
The binary likely contains encrypted or compressed data.
Authenticode signature is invalid
Binary compilation timestomping detected

How to determine MSILHeracles.146413?


File Info:
name: B16CF233B90E1F12DA32.mlw
path: /opt/CAPEv2/storage/binaries/20aabbb4a62bfec110502cfc7e7698d3b6523ab94c692b93d737459bc4942b80
crc32: D7A25121
md5: b16cf233b90e1f12da32a4be88d24e84
sha1: e85e01084fdaf351849feefc83320ace1753639a
sha256: 20aabbb4a62bfec110502cfc7e7698d3b6523ab94c692b93d737459bc4942b80
sha512: c2cee9d4227eacbdfb34c976afb3f09b4c59cd642b05f585da1854476e096b509133ffcf4d84ce7699f9669f10e75e40882e07a2da2a1532befcd18468448866
ssdeep: 49152:SRIE98A3MMx03uKnHYC7hEcJKHYILcKfvo/Z7DNgR/8v+Rz6q3svq4mkqXfd+/94:5E91cC03uK4CdEKIJfeMR5h6rS1kqXfp
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T167D511C25B5ABE12C52B13B8DC46D23922B02EC4E6ABFEC611C4BC7739B1D904D58277
sha3_384: ba74e333b98b9ba31e7f7a6adbfe9b6500aab303a833b6c25e2e17a42bd5a15147a2779196cefadef7f0e4bd904e0ebd
ep_bytes: ff250020400000000000000000000000
timestamp: 2085-01-26 14:15:39

Version Info:
Translation: 0x0000 0x04b0
Comments: 
CompanyName: 
FileDescription: LFG
FileVersion: 1.0.0.0
InternalName: LFG.exe
LegalCopyright: Copyright ©  2024
LegalTrademarks: 
OriginalFilename: LFG.exe
ProductName: LFG
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

MSILHeracles.146413 also known as:

Bkav	W32.AIDetectMalware.CS
MicroWorld-eScan	Gen:Variant.MSILHeracles.146413
FireEye	Gen:Variant.MSILHeracles.146413
Skyhigh	Artemis!Trojan
McAfee	Artemis!B16CF233B90E
Malwarebytes	Generic.Malware/Suspicious
VIPRE	Gen:Variant.MSILHeracles.146413
Sangfor	Trojan.Win32.Agent.Vcud
CrowdStrike	win/malicious_confidence_70% (W)
Arcabit	Trojan.MSILHeracles.D23BED
BitDefenderTheta	Gen:NN.ZemsilF.36744.Vo0@ausu6vo
VirIT	Trojan.Win32.MSIL_Heur.A
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (high confidence)
APEX	Malicious
BitDefender	Gen:Variant.MSILHeracles.146413
Avast	MalwareX-gen [Trj]
Emsisoft	Gen:Variant.MSILHeracles.146413 (B)
F-Secure	Trojan.TR/Crypt.XPACK.Gen
SentinelOne	Static AI – Suspicious PE
MAX	malware (ai score=80)
Webroot	W32.Trojan.TR.Crypt.XPACK
Google	Detected
Avira	TR/Crypt.XPACK.Gen
Varist	W32/MSIL_Kryptik.KDE.gen!Eldorado
Microsoft	Trojan:Win32/Sabsik.FL.B!ml
GData	Gen:Variant.MSILHeracles.146413
ALYac	Gen:Variant.MSILHeracles.146413
Cylance	unsafe
Ikarus	Trojan.Crypt
MaxSecure	Trojan.Malware.300983.susgen
AVG	MalwareX-gen [Trj]
DeepInstinct	MALICIOUS

How to remove MSILHeracles.146413?

MSILHeracles.146413 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X