Malware

Should I remove “Troj/Steal-CZT”?

Malware Removal

The Troj/Steal-CZT is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Troj/Steal-CZT virus can do?

  • Authenticode signature is invalid
  • Anomalous .NET characteristics

How to determine Troj/Steal-CZT?



File Info:

name: B50535766D6C13CA0F3B.mlw
path: /opt/CAPEv2/storage/binaries/59cc872d4faa529112426d672c57823bd2ae409a0b44ee58311cac16160686c0
crc32: 587B07EA
md5: b50535766d6c13ca0f3b4bc32ee32115
sha1: af1891757f41d57cf14d02fb400a6ce8244a5ce0
sha256: 59cc872d4faa529112426d672c57823bd2ae409a0b44ee58311cac16160686c0
sha512: 12e57d5407a77a2c8647d4103b39212636d6cf717b6edaaa20665a094a6a03d8d52687415ef765129421c09bee30fdbb82bf94f3c18750e5230b32aa5e671a9e
ssdeep: 768:RTKd4xtMuZLDd4UViDkmBq7gyxCjDuvTw2ET3QK03ZsKNTIb:JKdUtMq+5DrcICwPT3alY
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T1BF23E70177E8CA56E6BE0ABD74342D2C02F6B52B7921F7594EC0B4DD2E72B858504BE3
sha3_384: 76515c159fe5fe7cee94118145a1fda2307039a1afb5ec6aa62e1ee02b83a4d97c9315eb703fec42c7318f11bb91c5d2
ep_bytes: ff250020400000000000000000000000
timestamp: 2022-09-28 21:52:31


Version Info:

Translation: 0x0000 0x04b0
FileDescription:  
FileVersion: 0.0.0.0
InternalName: credentials.exe
LegalCopyright:  
OriginalFilename: credentials.exe
ProductVersion: 0.0.0.0
Assembly Version: 0.0.0.0

Troj/Steal-CZT also known as:

MicroWorld-eScanIL:Trojan.MSILZilla.15602
FireEyeIL:Trojan.MSILZilla.15602
ALYacIL:Trojan.MSILZilla.15602
VIPREIL:Trojan.MSILZilla.15602
SangforSuspicious.Win32.Save.a
K7GWSpyware ( 004bcf421 )
CyrenW32/MSIL_Kryptik.DGZ.gen!Eldorado
SymantecML.Attribute.HighConfidence
Elasticmalicious (high confidence)
ESET-NOD32a variant of MSIL/Spy.Keylogger.AVQ
APEXMalicious
ClamAVWin.Packed.Msilperseus-9956591-0
KasperskyHEUR:Trojan-PSW.MSIL.Stealer.gen
BitDefenderIL:Trojan.MSILZilla.15602
AvastWin32:SpywareX-gen [Trj]
Ad-AwareIL:Trojan.MSILZilla.15602
EmsisoftIL:Trojan.MSILZilla.15602 (B)
DrWebTrojan.PWS.StealerNET.141
ZillyaTrojan.Keylogger.Win32.76260
TrendMicroTROJ_GEN.R03BC0PJ222
McAfee-GW-EditionGenericRXUE-HT!B50535766D6C
Trapminesuspicious.low.ml.score
SophosTroj/Steal-CZT
GDataIL:Trojan.MSILZilla.15602
GoogleDetected
AviraHEUR/AGEN.1203311
MAXmalware (ai score=85)
Antiy-AVLTrojan/Generic.ASMalwS.20F
MicrosoftTrojan:Win32/Sabsik.FL.B!ml
CynetMalicious (score: 100)
AhnLab-V3Malware/Win32.RL_Generic.C4282367
McAfeeGenericRXUE-HT!B50535766D6C
VBA32Trojan.MSIL.InfoStealer.gen.D
MalwarebytesMalware.AI.3274508134
TrendMicro-HouseCallTROJ_GEN.R03BC0PJ222
RisingStealer.Chrome!1.DA70 (CLASSIC)
IkarusTrojan-Spy.Echelon
MaxSecureTrojan.Malware.121218.susgen
FortinetMSIL/Keylogger.AVQ!tr.spy
BitDefenderThetaGen:NN.ZemsilF.34698.cm0@aeDDQCf
AVGWin32:SpywareX-gen [Trj]
CrowdStrikewin/malicious_confidence_100% (W)

How to remove Troj/Steal-CZT?

Troj/Steal-CZT removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment