How to remove “Ransom:MSIL/SPARTCRYPT.DA!MTB”?

Malware Removal

The Ransom:MSIL/SPARTCRYPT.DA!MTB is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware - Review 2020

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
6-day free trial available.

What Ransom:MSIL/SPARTCRYPT.DA!MTB virus can do?

  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

Related domains:

z.whorecord.xyz
a.tomx.xyz

How to determine Ransom:MSIL/SPARTCRYPT.DA!MTB?


File Info:

crc32: 0042F6C0
md5: 7061b29547de0ff55815eaa6eb4bee69
name: 7061B29547DE0FF55815EAA6EB4BEE69.mlw
sha1: 0d3daa028e99a7ba98a4fdd61ff9ed4efc96d82d
sha256: 6cf1b18b34e5ff6fded9b19eaf393dc1016f5005175ff03e01e6f8b01674b855
sha512: 9b446d507c3ff866ac163ab2dc5e207f9d4c3fff34e7a8ee0e79c9c659f693e24bb91917c26e6fedf623b846db51f80abf27e5057094e268d8dc407285aa945a
ssdeep: 384:FV8aTE8qcSchXeQVbfANpCb8rMNCtpDkjvunItx4sOr3ibhrBvBkaqd7qasyO:FGaAHchXlb4qNFU1yr5uaeLsyO
type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows

Version Info:

Translation: 0x0000 0x04b0
LegalCopyright: Copyright 1999-2019 Chrome and Google developers. All rights reserved.
Assembly Version: 47.24.11.2
InternalName: Spart_E.exe
FileVersion: 47.24.11.2
CompanyName:
LegalTrademarks:
Comments:
ProductName: Chrome
ProductVersion: 47.24.11.2
FileDescription: Chrome
OriginalFilename: Spart_E.exe

Ransom:MSIL/SPARTCRYPT.DA!MTB also known as:

K7AntiVirusTrojan ( 005597bc1 )
Elasticmalicious (high confidence)
DrWebTrojan.Encoder.29792
CynetMalicious (score: 100)
ALYacTrojan.Ransom.Filecoder
CylanceUnsafe
ZillyaTrojan.Filecoder.Win32.11174
CrowdStrikewin/malicious_confidence_100% (W)
AlibabaRansom:Win32/Higuniel.d000b304
K7GWTrojan ( 005597bc1 )
Cybereasonmalicious.547de0
CyrenW32/Jigsaw.GEHI-8255
SymantecTrojan.Gen.MBT
ESET-NOD32MSIL/Filecoder.Jigsaw.V
ZonerTrojan.Win32.85834
AvastWin32:RansomX-gen [Ransom]
KasperskyHEUR:Trojan-Ransom.MSIL.Encoder.gen
BitDefenderTrojan.AgentWDCR.XDL
NANO-AntivirusTrojan.Win32.Ransom.gimzaf
MicroWorld-eScanTrojan.AgentWDCR.XDL
TencentMsil.Trojan.Encoder.Aexl
Ad-AwareTrojan.AgentWDCR.XDL
SophosMal/Generic-S + Mal/Generic-L
ComodoMalware@#20yakg1ywsrg7
BitDefenderThetaGen:NN.ZemsilF.34688.bm0@ai5T2Om
VIPRETrojan.Win32.Generic!BT
TrendMicroRansom.MSIL.SPARTCRYPT.A
McAfee-GW-EditionRansom-SpartEnc!7061B29547DE
FireEyeTrojan.AgentWDCR.XDL
EmsisoftTrojan.AgentWDCR.XDL (B)
SentinelOneStatic AI – Malicious PE
JiangminTrojan.MSIL.ntwt
WebrootW32.Trojan.Gen
AviraTR/Jigsaw.canmb
Antiy-AVLTrojan/Generic.ASMalwS.2CFF7A5
MicrosoftRansom:MSIL/SPARTCRYPT.DA!MTB
AegisLabTrojan.MSIL.Encoder.j!c
GDataWin32.Trojan.Agent.9OPMB3
AhnLab-V3Malware/Win32.RL_Generic.C3540211
McAfeeArtemis!7061B29547DE
MAXmalware (ai score=100)
VBA32TScope.Trojan.MSIL
MalwarebytesRansom.SpartCrypt
PandaTrj/WLT.E
TrendMicro-HouseCallRansom.MSIL.SPARTCRYPT.A
RisingTrojan.Phobos/HELP!1.BCC4 (KTSE)
YandexTrojan.Filecoder!6eHKV4FjArY
IkarusTrojan-Ransom.JigSaw
MaxSecureTrojan.Malware.73702460.susgen
FortinetW32/Encoder.V!tr.ransom
AVGWin32:RansomX-gen [Ransom]
Paloaltogeneric.ml

How to remove Ransom:MSIL/SPARTCRYPT.DA!MTB?

Ransom:MSIL/SPARTCRYPT.DA!MTB removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

Leave a Comment