Trojan

Trojan.MSIL.Agent.CLQ (file analysis)

Malware Removal

The Trojan.MSIL.Agent.CLQ is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.MSIL.Agent.CLQ virus can do?

  • Executable code extraction
  • Creates RWX memory
  • Reads data out of its own binary image
  • The binary likely contains encrypted or compressed data.
  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

How to determine Trojan.MSIL.Agent.CLQ?



File Info:

crc32: DEDDEE8A
md5: d692afdfb5d27cf52ddae0f91d1103ac
name: D692AFDFB5D27CF52DDAE0F91D1103AC.mlw
sha1: 6a57913dadbcc7dadec5bbd0983bd43f817c2221
sha256: 15aa0590ac5dc13c5f6f5ad90ec1a840be8c9959024bbdddaec8c47e60282c71
sha512: ec0fe0de8ca7b3c76a9f8d4817e210f239745659511a6688fc7df0901cd63b4e1276b814114caa44c65425f71a1ecb5499b11f63d408b3bdfd76d54317098d76
ssdeep: 1536:JF6qKuqvPlAcNq9jr5y345v2llAcNq9jr5y345v2/nM2YguoHQixQ4YN:JFFqvlNQ04VqNQ04VKnH7RQPN
type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows


Version Info:

LegalCopyright: xa9 A Company. All rights reserved.
InternalName: 
FileVersion: 1.0.0.0
CompanyName: A Company
ProductName: 
ProductVersion: 1.0.0.0
FileDescription: 
OriginalFilename: myfile.exe
Translation: 0x0409 0x04b0

Trojan.MSIL.Agent.CLQ also known as:

Elasticmalicious (high confidence)
MicroWorld-eScanTrojan.MSIL.Agent.CLQ
FireEyeGeneric.mg.d692afdfb5d27cf5
CAT-QuickHealTrojan.GenericFC.S17873715
ALYacTrojan.MSIL.Agent.CLQ
MalwarebytesBackdoor.DarkComet
K7AntiVirusTrojan ( 700000121 )
BitDefenderTrojan.MSIL.Agent.CLQ
K7GWTrojan ( 700000121 )
CrowdStrikewin/malicious_confidence_100% (D)
SymantecML.Attribute.HighConfidence
APEXMalicious
Paloaltogeneric.ml
ClamAVWin.Malware.Msilperseus-6989564-0
AlibabaTrojan:MSIL/Injector.64f7980f
NANO-AntivirusTrojan.Win32.Disfa.eqldnd
TencentMalware.Win32.Gencirc.10b61181
Ad-AwareTrojan.MSIL.Agent.CLQ
EmsisoftTrojan.MSIL.Agent.CLQ (B)
ComodoMalware@#2u43bnaqdoa7i
DrWebTrojan.DownLoader25.2687
ZillyaTrojan.Kryptik.Win32.1213946
TrendMicroTROJ_KRYPTIK_GG3104FE.UVPM
SophosML/PE-A + Mal/MSIL-SF
AviraTR/Dropper.Gen
Antiy-AVLTrojan/Win32.AGeneric
AegisLabTrojan.MSIL.Disfa.4!c
AhnLab-V3Trojan/Win32.Crypt.C2018638
GDataTrojan.MSIL.Agent.CLQ
CynetMalicious (score: 100)
ESET-NOD32a variant of MSIL/Injector.RSG
BitDefenderThetaGen:NN.ZemsilF.34804.hm2@ayWsRZni
MAXmalware (ai score=89)
VBA32Backdoor.MSIL.SpyGate
TrendMicro-HouseCallTROJ_KRYPTIK_GG3104FE.UVPM
RisingBackdoor.Bladabindi!8.B1F (TFE:C:YmIuEDuurZF)
YandexTrojan.Revenge!CLiGAX/IqO4
SentinelOneStatic AI – Malicious PE
eGambitUnsafe.AI_Score_95%
FortinetMSIL/Injector.CMQ!tr
Cybereasonmalicious.fb5d27
PandaTrj/CI.A
Qihoo-360Win32/Sorter.AVE.DotNetFile.A

How to remove Trojan.MSIL.Agent.CLQ?

Trojan.MSIL.Agent.CLQ removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment