Malware

Should I remove “MSILPerseus.232715”?

Malware Removal

The MSILPerseus.232715 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What MSILPerseus.232715 virus can do?

  • Dynamic (imported) function loading detected
  • CAPE extracted potentially suspicious content
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • The executable is likely packed with VMProtect
  • Authenticode signature is invalid
  • Binary compilation timestomping detected

How to determine MSILPerseus.232715?



File Info:

name: 4C94255807BABE1A59FA.mlw
path: /opt/CAPEv2/storage/binaries/13bfc8153c1d9f9d49def11b1050d6917f1a6786cacb50a9c30bcbd57940a302
crc32: 5956DABE
md5: 4c94255807babe1a59fa0a38657ca5d1
sha1: 64ac42023b22ae752fd10b2b8a2042e1f4caaebf
sha256: 13bfc8153c1d9f9d49def11b1050d6917f1a6786cacb50a9c30bcbd57940a302
sha512: 8598acd5d97c045378f8a223bc0b5f80f4188e87b60e5c6dc7eea474a92ffbcfe8431a800e96b2c3267df07ffb05ec71b34b617a1d5281c789ed2f726be10719
ssdeep: 6144:XfB9luvv1kjf1/KocMtEgeMKKhoI1pw1DboOPrtx0ndtIg:p2vGjf/cNgTKKCIeAOPn0ndi
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T13F749D9C6B99DC32C58B4379E491C06905B1CE19E3F3E79BE029BE673952333B90215B
sha3_384: 716dbbfe146445fdcc9bb626e390e67c1c851f665cfbf0c84991e9d2b0c2f7f35bd04993aabcd03ac227ac80f0396835
ep_bytes: ff2500004600184500182d00113d0000
timestamp: 2094-12-07 21:06:30


Version Info:

Translation: 0x0000 0x04b0
Comments: 
CompanyName: 
FileDescription: Spoofer
FileVersion: 1.0.0.0
InternalName: unknownspf_loader.exe
LegalCopyright: Copyright ©  2021
LegalTrademarks: 
OriginalFilename: unknownspf_loader.exe
ProductName: 
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

MSILPerseus.232715 also known as:

LionicTrojan.Multi.Generic.4!c
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.MSILPerseus.232715
FireEyeGeneric.mg.4c94255807babe1a
ALYacGen:Variant.MSILPerseus.232715
CylanceUnsafe
SangforSuspicious.Win32.Save.a
CrowdStrikewin/malicious_confidence_70% (W)
AlibabaPacked:MSIL/VMProtect.f62d2f8e
K7GWTrojan ( 00574e2d1 )
K7AntiVirusTrojan ( 00574e2d1 )
BitDefenderThetaGen:NN.ZemsilF.34182.vy0@aCHNHgi
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/Packed.VMProtect.ACR
TrendMicro-HouseCallTROJ_GEN.R03FC0PAS22
Paloaltogeneric.ml
ClamAVWin.Packed.Bulz-9859365-0
KasperskyUDS:Trojan.MSIL.Witch.gen
BitDefenderGen:Variant.MSILPerseus.232715
AvastWin32:MalwareX-gen [Trj]
SophosMal/Generic-S
TrendMicroTROJ_GEN.R03FC0PAS22
McAfee-GW-EditionBehavesLike.Win32.IRCBot.fh
EmsisoftGen:Variant.MSILPerseus.232715 (B)
IkarusTrojan.MSIL.Vmprotect
WebrootW32.Trojan.Gen
AviraHEUR/AGEN.1226417
MAXmalware (ai score=87)
MicrosoftTrojan:Win32/Wacatac.B!ml
ZoneAlarmUDS:Trojan.MSIL.Witch.gen
GDataGen:Variant.MSILPerseus.232715
CynetMalicious (score: 100)
AhnLab-V3Malware/Win32.RL_Generic.C4292396
McAfeeRDN/Generic.hbg
VBA32Trojan.Wacatac
MalwarebytesMalware.AI.3649186525
APEXMalicious
RisingTrojan.Generic/MSIL@AI.100 (RDM.MSIL:3ReWbiq+rb79iHHyBCQAUw)
YandexRiskware.VMProtect!mTO2724Dahk
SentinelOneStatic AI – Malicious PE
MaxSecureTrojan.Malware.108560625.susgen
FortinetRiskware/Application
AVGWin32:MalwareX-gen [Trj]
Cybereasonmalicious.807bab

How to remove MSILPerseus.232715?

MSILPerseus.232715 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment