Malware

MSILHeracles.98800 information

Malware Removal

The MSILHeracles.98800 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What MSILHeracles.98800 virus can do?

  • CAPE extracted potentially suspicious content
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • Unusual version info supplied for binary
  • Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine MSILHeracles.98800?



File Info:

name: 83067DCC241ED638790F.mlw
path: /opt/CAPEv2/storage/binaries/c6082e8355c52a9b55b12f8c25515675ff0a9bac6b73491548d8c6568174b9c8
crc32: E63A8B75
md5: 83067dcc241ed638790fdb9450e9186e
sha1: a2b7f31d5bf6c9611312f3414a0b5606540bd94e
sha256: c6082e8355c52a9b55b12f8c25515675ff0a9bac6b73491548d8c6568174b9c8
sha512: c3450ae09ee234f273ffdc323eed10ef81c4660f0ff565c3617e7e38a2e714d4cffa2d4c23701349b2a292a462704405aeaeb71f27c2c1752bd8e05f767726ec
ssdeep: 24576:+IGwHhYsxe10DGFDs5GLzPiU9K3s0uYXqduY:+HYm0DGhhL+UA3s0uY
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T14725121FB79A95F3C244077BCF9B311013B1DAD6F663DA0BB98DA31649037EA894520B
sha3_384: 2ee468ba57cab049a255da8d65baef7109586cc6fad4e9049583332ec47696a91a48fb8c1cc5830958312d324a6c180c
ep_bytes: ff250020400000000000000000000000
timestamp: 2023-07-27 19:02:31


Version Info:

Translation: 0x0000 0x04b0
Comments: Skype Setup
CompanyName: Skype Technologies S.A.
FileDescription: Skype Setup
FileVersion: 8.83.0.409
InternalName: Puqthluakoa.exe
LegalCopyright: (c) 2022 Skype and/or Microsoft
LegalTrademarks: 
OriginalFilename: Puqthluakoa.exe
ProductName: Skype
ProductVersion: 8.83.0.409
Assembly Version: 8.83.0.409

MSILHeracles.98800 also known as:

BkavW32.Common.13FE23CB
LionicTrojan.Win32.Remcos.4!c
MicroWorld-eScanGen:Variant.MSILHeracles.98800
McAfeeArtemis!83067DCC241E
MalwarebytesTrojan.Crypt.MSIL
SangforSuspicious.Win32.Save.a
K7AntiVirusTrojan ( 005a800f1 )
AlibabaBackdoor:MSIL/Remcos.14cd3310
K7GWTrojan ( 005a800f1 )
Cybereasonmalicious.d5bf6c
BitDefenderThetaGen:NN.ZemsilF.36348.@m0@auhuZze
VirITTrojan.Win32.MSIL_Heur.A
CyrenW32/ABRisk.XBCF-2582
Elasticmalicious (high confidence)
ESET-NOD32a variant of MSIL/Kryptik.AJDO
APEXMalicious
KasperskyHEUR:Backdoor.MSIL.Remcos.gen
BitDefenderGen:Variant.MSILHeracles.98800
AvastWin32:BackdoorX-gen [Trj]
EmsisoftGen:Variant.MSILHeracles.98800 (B)
F-SecureHeuristic.HEUR/AGEN.1327334
VIPREGen:Variant.MSILHeracles.98800
TrendMicroTROJ_GEN.R014C0DGV23
McAfee-GW-EditionBehavesLike.Win32.BadFile.fc
Trapminemalicious.moderate.ml.score
FireEyeGeneric.mg.83067dcc241ed638
SophosMal/Generic-R
IkarusTrojan.MSIL.Crypt
GDataGen:Variant.MSILHeracles.98800
GoogleDetected
AviraHEUR/AGEN.1327334
Antiy-AVLTrojan/MSIL.Kryptik
ArcabitTrojan.MSILHeracles.D181F0
ZoneAlarmHEUR:Backdoor.MSIL.Remcos.gen
MicrosoftTrojan:Win32/Leonem
CynetMalicious (score: 100)
Acronissuspicious
VBA32TScope.Trojan.MSIL
ALYacGen:Variant.MSILHeracles.98800
MAXmalware (ai score=81)
Cylanceunsafe
PandaTrj/Chgt.AD
TrendMicro-HouseCallTROJ_GEN.R014C0DGV23
RisingMalware.Obfus/MSIL@AI.100 (RDM.MSIL2:idXAl5PFOrLxZYsFd/N0tw)
SentinelOneStatic AI – Malicious PE
MaxSecureTrojan.Malware.300983.susgen
FortinetMSIL/Agent.AWE!tr
AVGWin32:BackdoorX-gen [Trj]
DeepInstinctMALICIOUS
CrowdStrikewin/malicious_confidence_100% (W)

How to remove MSILHeracles.98800?

MSILHeracles.98800 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment