How to remove “MSILPerseus.117227 (B)”?

The MSILPerseus.117227 (B) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What MSILPerseus.117227 (B) virus can do?

CAPE extracted potentially suspicious content
The binary likely contains encrypted or compressed data.
Authenticode signature is invalid

How to determine MSILPerseus.117227 (B)?


File Info:
name: CB0A50173D15A66F9D02.mlw
path: /opt/CAPEv2/storage/binaries/3291765b2159ec0613e1f11edd00611c9899014378c056d4af1811fd156481ec
crc32: FE88910B
md5: cb0a50173d15a66f9d0270c78930dded
sha1: 2cbffca0d699f7be9084a0ce849a7b7d8056ceab
sha256: 3291765b2159ec0613e1f11edd00611c9899014378c056d4af1811fd156481ec
sha512: 9d5e079f75086ae4acca3401327468d59ff767be74953ad3833c70e01eb0af6882b703ab16693ee765835f9d3346a94d2b4a610a1f56c415bcff9af82ec9b2e7
ssdeep: 12288:FA8xw0az1mR2KtxCaUvIMSvdITs21h3LPBy+z3VkS17GP+i:FA8xHxpEIRMs21tPVkSdGB
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T168F412707974D5C6F6183B3AC273DEA923311F36E6099A6F94C93DE632A2243711D70A
sha3_384: d91b00f63d1ae6eec7e38d912d9fa454d6572206a7bbbd4c1202dab971021ad567343df2563465c9fac75169b66c148a
ep_bytes: ff250020400000000000000000000000
timestamp: 2018-09-24 08:51:37

Version Info:
Translation: 0x0000 0x04b0
Comments: 
CompanyName: 
FileDescription: Hallo
FileVersion: 1.0.0.0
InternalName: Hallo.exe
LegalCopyright: Copyright ©  2016
LegalTrademarks: 
OriginalFilename: Hallo.exe
ProductName: Hallo
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

MSILPerseus.117227 (B) also known as:

Bkav	W32.AIDetectMalware.CS
Lionic	Trojan.Win32.Razy.4!c
Elastic	malicious (high confidence)
MicroWorld-eScan	Gen:Variant.MSILPerseus.117227
Skyhigh	GenericRXCF-AC!CB0A50173D15
McAfee	GenericRXCF-AC!CB0A50173D15
Cylance	unsafe
Zillya	Trojan.LockScreen.Win32.10108
Sangfor	Trojan.Msil.Lockscreen.V5b8
CrowdStrike	win/malicious_confidence_100% (W)
Alibaba	Trojan:MSIL/LockScreen.22bfa376
K7GW	Trojan ( 0050eab41 )
K7AntiVirus	Trojan ( 0050eab41 )
Arcabit	Trojan.MSILPerseus.D1C9EB
BitDefenderTheta	Gen:NN.ZemsilF.36680.Sm0@aKWxidg
Symantec	Trojan.Gen.2
ESET-NOD32	a variant of MSIL/LockScreen.TA
Cynet	Malicious (score: 99)
Kaspersky	HEUR:Trojan.MSIL.Locker.gen
BitDefender	Gen:Variant.MSILPerseus.117227
NANO-Antivirus	Trojan.Win32.LockScreen.fiktbk
Avast	Win32:TrojanX-gen [Trj]
Tencent	Msil.Trojan.Locker.Adhl
Emsisoft	Gen:Variant.MSILPerseus.117227 (B)
F-Secure	Heuristic.HEUR/AGEN.1365441
VIPRE	Gen:Variant.MSILPerseus.117227
Sophos	Mal/Generic-S
Ikarus	Trojan.MSIL.LockScreen
Avira	HEUR/AGEN.1365441
Antiy-AVL	Trojan/MSIL.LockScreen
Microsoft	Trojan:Win32/Wacatac.B!ml
ZoneAlarm	HEUR:Trojan.MSIL.Locker.gen
GData	Gen:Variant.MSILPerseus.117227
Google	Detected
VBA32	TScope.Trojan.MSIL
Malwarebytes	Malware.AI.4127332221
Rising	Trojan.LockScreen!8.1AF (CLOUD)
Yandex	Trojan.LockScreen!0ePTQmP+/ko
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	MSIL/LockScreen.TA!tr
AVG	Win32:TrojanX-gen [Trj]
DeepInstinct	MALICIOUS

How to remove MSILPerseus.117227 (B)?

MSILPerseus.117227 (B) removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X