Trojan

Trojan.Downloader.MSKL.Generic removal

Malware Removal

The Trojan.Downloader.MSKL.Generic is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
6-day free trial available.

What Trojan.Downloader.MSKL.Generic virus can do?

  • Unconventionial language used in binary resources: Chinese (Simplified)
  • Authenticode signature is invalid
  • CAPE detected the shellcode get eip malware family
  • Yara detections observed in process dumps, payloads or dropped files

How to determine Trojan.Downloader.MSKL.Generic?


File Info:

name: 632E2363ECFA6DA28AE1.mlw
path: /opt/CAPEv2/storage/binaries/ff524131c8d3a25782771cd0fdeaccea9be2408811f8f9bd0dce33188f67425f
crc32: 50104704
md5: 632e2363ecfa6da28ae1bde8745a14bb
sha1: 2334f1e8b57d357178335b7012356e547c9a30ff
sha256: ff524131c8d3a25782771cd0fdeaccea9be2408811f8f9bd0dce33188f67425f
sha512: bf6d62d72fad05bd9c2ca5925ffa6b4ab670c5cb2647011c53587b2f1ed960cf59a74a1a72cdbbb0e36dd8db2ec3115dec5071221cbdfb24632157018aa2de0b
ssdeep: 49152:4XYY1TeFqzMBjkRQjmxPDtzkvlpYbBTKPiD+MzTUjj:4X7eFqz6g0mxPDtzrbtKPiD+Mz
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T160858D3279D0D077C93317318E8D736AA3BDEB704B35528762D55E692DF04C2A92CAA3
sha3_384: 1275239bf92c9ec039e53ea74d79c9171860459b15e19b32a7b7ecc2ac0fdde996327189c20a8e1968e8e623e6f61cb2
ep_bytes: e8e5d70000e97bfeffff558bec568b75
timestamp: 2023-09-19 11:23:15

Version Info:

CompanyName: Google LLC
FileDescription: Google Chrome
FileVersion: 119.0.6045.105
InternalName: chrome_exe
LegalCopyright: Copyright 2023 Google LLC. All rights reserved.
OriginalFilename: chrome.exe
ProductName: Google Chrome
ProductVersion: 119.0.6045.105
CompanyShortName: Google
ProductShortName: Chrome
LastChange: 38c72552c5e15ba9b3117c0967a0fd105072d7c6-refs/branch-heads/6045@#1103
Official Build: 1
Translation: 0x0409 0x04b0

Trojan.Downloader.MSKL.Generic also known as:

BkavW32.Common.A6B0ECFD
LionicTrojan.Win32.Rugmi.4!c
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Jaik.210765
FireEyeGen:Variant.Jaik.210765
SkyhighBehavesLike.Win32.BadFile.th
McAfeeArtemis!632E2363ECFA
MalwarebytesTrojan.Downloader.MSKL.Generic
VIPREGen:Variant.Jaik.210765
SangforDownloader.Win32.Rugmi.Vwbx
K7AntiVirusTrojan-Downloader ( 005aec4e1 )
AlibabaTrojanDownloader:Win32/Rugmi.4afa512c
K7GWTrojan-Downloader ( 005aec4e1 )
CrowdStrikewin/malicious_confidence_100% (W)
ArcabitTrojan.Jaik.D3374D
VirITTrojan.Win32.Genus.UGW
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/TrojanDownloader.Rugmi.ACY.gen
BitDefenderGen:Variant.Jaik.210765
NANO-AntivirusTrojan.Win32.Rugmi.khnxer
AvastWin32:Malware-gen
EmsisoftGen:Variant.Jaik.210765 (B)
F-SecureTrojan.TR/Dldr.Rugmi.rulsh
SophosMal/Generic-S
IkarusTrojan-Downloader.Win32.Rugmi
JiangminTrojanDownloader.Agentb.dm
GoogleDetected
AviraTR/Dldr.Rugmi.rulsh
Antiy-AVLTrojan[Downloader]/Win32.Rugmi
MicrosoftTrojan:Win32/Wacatac.B!ml
GDataGen:Variant.Jaik.210765
VaristW32/ABDownloader.HQUL-7924
AhnLab-V3Malware/Win.Generic.C5554843
ALYacGen:Variant.Jaik.210765
MAXmalware (ai score=86)
Cylanceunsafe
PandaTrj/Chgt.AD
TrendMicro-HouseCallTROJ_GEN.R002H0CAS24
RisingDownloader.Agent!1.F280 (CLASSIC)
FortinetW32/Rugmi.ACY!tr.dldr
AVGWin32:Malware-gen
DeepInstinctMALICIOUS

How to remove Trojan.Downloader.MSKL.Generic?

Trojan.Downloader.MSKL.Generic removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment