MSILPerseus.159333 information

The MSILPerseus.159333 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What MSILPerseus.159333 virus can do?

Sample contains Overlay data
Reads data out of its own binary image
CAPE extracted potentially suspicious content
The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid

How to determine MSILPerseus.159333?


File Info:
name: 94FE0E284F28C2D3B22D.mlw
path: /opt/CAPEv2/storage/binaries/fbfa5cecd1a703e1529e99ec974022164cf98f1656e42e37b91d223ac2031a10
crc32: E8804275
md5: 94fe0e284f28c2d3b22ddbd391c19be4
sha1: 5bef7a4006bb37b64c064248a7a309afcf99ef66
sha256: fbfa5cecd1a703e1529e99ec974022164cf98f1656e42e37b91d223ac2031a10
sha512: 9bd88b8ebc0669b3c9a12ccad59dab87ed06228a3a30c8863b9b9d4181255c44d52089462dd45e125829952a009297f537dc6092c9bb13f27c2de6e3a3943c64
ssdeep: 384:b9nBdatA08D74YJu5wQyr4HQLT7Z1r/qD9iR0mtWBZLW:pY8D7P8wQyf/qMQZLW
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T184A2070467D68235CFED4FB10873A64007B9DC43DA06FB0E4AE5B5E50A736914AA1BFA
sha3_384: 3eb445f7d6d35b7490191a586841e53ddb57860be686348de57b481a34dec4b37cf908e1a2b232d97d73819b37141b1d
ep_bytes: ff250020400000000000000000000000
timestamp: 2012-08-26 10:22:28

Version Info:
Translation: 0x0000 0x04b0
CompanyName: Microsoft
FileDescription: client
FileVersion: 1.0.0.0
InternalName: server.exe
LegalCopyright: Copyright © Microsoft 2010
OriginalFilename: server.exe
ProductName: client
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

MSILPerseus.159333 also known as:

tehtris	Generic.Malware
MicroWorld-eScan	Gen:Variant.MSILPerseus.159333
FireEye	Generic.mg.94fe0e284f28c2d3
ALYac	Gen:Variant.MSILPerseus.159333
Alibaba	Trojan:MSIL/Generic.f6e14f32
Cybereason	malicious.84f28c
Symantec	Trojan.Gen.MBT
Elastic	malicious (high confidence)
ESET-NOD32	a variant of MSIL/Small.GV
APEX	Malicious
Paloalto	generic.ml
Cynet	Malicious (score: 99)
BitDefender	Gen:Variant.MSILPerseus.159333
NANO-Antivirus	Trojan.Win32.Zusy.dpgayu
Tencent	Win32.Trojan.Downloader.Yfow
Ad-Aware	Gen:Variant.MSILPerseus.159333
Emsisoft	Gen:Variant.MSILPerseus.159333 (B)
Comodo	Malware@#2nersst3pwu5l
VIPRE	Gen:Variant.MSILPerseus.159333
Sophos	Mal/Agent-ASZ
SentinelOne	Static AI – Malicious PE
GData	Gen:Variant.MSILPerseus.159333
Webroot	W32.Malware.Gen
Avira	TR/Downloader.Gen
Arcabit	Trojan.MSILPerseus.D26E65
Microsoft	Trojan:Win32/Wacatac.B!ml
Google	Detected
Rising	Trojan.Generic/MSIL@AI.100 (RDM.MSIL:OxBaAvFTN1lyJil/2TNBdw)
Ikarus	Trojan-Dropper
MaxSecure	Trojan.Malware.300983.susgen
BitDefenderTheta	AI:Packer.D27F95CB1F
CrowdStrike	win/malicious_confidence_100% (W)

How to remove MSILPerseus.159333?

MSILPerseus.159333 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X