Ransom

How to remove “Ransom:MSIL/AESLocker.DB!MTB”?

Malware Removal

The Ransom:MSIL/AESLocker.DB!MTB is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Ransom:MSIL/AESLocker.DB!MTB virus can do?

  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

Related domains:

z.whorecord.xyz

How to determine Ransom:MSIL/AESLocker.DB!MTB?



File Info:

crc32: CB1405A6
md5: c960ad6f6ec62b5274ecb1dd98d68e17
name: C960AD6F6EC62B5274ECB1DD98D68E17.mlw
sha1: 53af975dcd2b9ee517cb0f39c4fe4ef12eae8b29
sha256: 98c783d601e405c1d9918ad20d47bb83b85fc2891707a592e445555653366406
sha512: f014a023664582c6bc3f573f014915e4f34011a10dab6d38926750cbb72702794c97ac2c25fe9c35e3bfcb197b8e76fa484bf0257a71e6e28ba8c5d042bb8f8f
ssdeep: 384:jEx83qe8eNuX5CKrwYijL2sNWnMWqpwt0nWpCXIFGfD:ox83tdOwYGdwxtS0CX7
type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows


Version Info:

Translation: 0x0000 0x04b0
LegalCopyright: Copyright xa9  2016
Assembly Version: 1.0.0.0
InternalName: Key Management Service.exe
FileVersion: 1.0.0.0
CompanyName: 
LegalTrademarks: 
Comments: 
ProductName: Key Management Service
ProductVersion: 1.0.0.0
FileDescription: Key Management Service
OriginalFilename: Key Management Service.exe

Ransom:MSIL/AESLocker.DB!MTB also known as:

MicroWorld-eScanTrojan.GenericKD.45702732
McAfeeRDN/Generic.dx
VIPRETrojan.Win32.Generic!BT
SangforTrojan.MSIL.AESLocker.A
K7AntiVirusTrojan ( 004f562f1 )
BitDefenderTrojan.GenericKD.45702732
K7GWTrojan ( 004f562f1 )
SymantecTrojan.Gen.MBT
ESET-NOD32a variant of MSIL/Filecoder.AESLocker.A
APEXMalicious
AvastWin32:Trojan-gen
AlibabaRansom:MSIL/AESLocker.a44e5953
NANO-AntivirusTrojan.Win32.AesLocker.ilmbhp
Ad-AwareTrojan.GenericKD.45702732
SophosMal/Generic-S
F-SecureTrojan.TR/AesLocker.huaki
TrendMicroTROJ_GEN.R04CC0PBC21
McAfee-GW-EditionRDN/Generic.dx
FireEyeTrojan.GenericKD.45702732
EmsisoftTrojan.GenericKD.45702732 (B)
IkarusTrojan-Ransom.Aeslocker
AviraTR/AesLocker.huaki
MicrosoftRansom:MSIL/AESLocker.DB!MTB
ArcabitTrojan.Generic.D2B95E4C
GDataTrojan.GenericKD.45702732
CynetMalicious (score: 85)
ALYacTrojan.GenericKD.45702732
MAXmalware (ai score=86)
PandaTrj/GdSda.A
TrendMicro-HouseCallTROJ_GEN.R04CC0PBC21
RisingTrojan.Filecoder!8.68 (CLOUD)
YandexTrojan.Filecoder!xYNIasUtgFU
FortinetMSIL/Filecoder_AESLocker.A!tr
AVGWin32:Trojan-gen
MaxSecureTrojan.Malware.7175203.susgen

How to remove Ransom:MSIL/AESLocker.DB!MTB?

Ransom:MSIL/AESLocker.DB!MTB removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment