Trojan

Trojan-PSW.MSIL.Growtopia.l removal tips

Malware Removal

The Trojan-PSW.MSIL.Growtopia.l is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan-PSW.MSIL.Growtopia.l virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • CAPE extracted potentially suspicious content
  • Drops a binary and executes it
  • Authenticode signature is invalid
  • Uses Windows utilities for basic functionality
  • CAPE detected the QuasarStealer malware family
  • Deletes executed files from disk
  • Uses suspicious command line tools or Windows utilities

How to determine Trojan-PSW.MSIL.Growtopia.l?



File Info:

name: FD99E6B41C6E4409EF6F.mlw
path: /opt/CAPEv2/storage/binaries/7e0f909a4fbcfc696cbeb557ebe4317cc208fb0af4998e26707cda26b58f9026
crc32: E6667307
md5: fd99e6b41c6e4409ef6f714649b6a988
sha1: 067a56b93d47e50dd291420f5061ecf69a050b24
sha256: 7e0f909a4fbcfc696cbeb557ebe4317cc208fb0af4998e26707cda26b58f9026
sha512: 974563518e6a21c00d1fddac775552a6d03a15cc0c86a247450d076325b8a541081d6f1d9c8bdb5ed192979b1504633af76c5dedd368c09cfcda0058d0fc2bbe
ssdeep: 24576:QjkTHEZEquFK7qDF8LoXW3CyyxBoQA5U4S2umuA3eymC59fTFM9TnT6wLUX5nWEy:VrKs8mFq72qxVpuieyT1TC90M
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1349533F2A0FF1563CE3A95F586C44BF650DBBC740DB3119A8DBD2796460C09F0AA6362
sha3_384: f31a4048dffe519ffe2b0757b7260b13b3140d80a85a27fb409629dc142b5e744e7083a357e2aac195e3c5bd2a2aa35d
ep_bytes: e891d71e006a00ff15a4005f00c35d00
timestamp: 2022-08-02 19:15:00


Version Info:

0: [No Data]

Trojan-PSW.MSIL.Growtopia.l also known as:

BkavW32.AIDetect.malware1
LionicTrojan.MSIL.SpyGate.m!c
MicroWorld-eScanGen:Variant.ExNuma.1
FireEyeGeneric.mg.fd99e6b41c6e4409
CAT-QuickHealTrojan.Pucrpt
McAfeeGenericRXRJ-XG!FD99E6B41C6E
CylanceUnsafe
VIPREGen:Variant.ExNuma.1
K7AntiVirusTrojan ( 0058ee541 )
AlibabaTrojanPSW:Win32/Growtopia.37e8fd11
K7GWTrojan ( 0058ee541 )
Cybereasonmalicious.41c6e4
CyrenW32/ExNuma.A.gen!Eldorado
SymantecML.Attribute.HighConfidence
Elasticmalicious (high confidence)
ESET-NOD32a variant of Win32/Kryptik.HNPY
APEXMalicious
Paloaltogeneric.ml
CynetMalicious (score: 100)
KasperskyTrojan-PSW.MSIL.Growtopia.l
BitDefenderGen:Variant.ExNuma.1
AvastWin32:TrojanX-gen [Trj]
TencentTrojan.Win32.Kryptik.zad
Ad-AwareGen:Variant.ExNuma.1
DrWebTrojan.Siggen18.32344
TrendMicroTROJ_GEN.R002C0DH222
McAfee-GW-EditionBehavesLike.Win32.Dropper.th
Trapminemalicious.high.ml.score
EmsisoftGen:Variant.ExNuma.1 (B)
SentinelOneStatic AI – Malicious PE
GDataWin32.Trojan.QuasarRAT.B
AviraHEUR/AGEN.1215601
MAXmalware (ai score=81)
Antiy-AVLTrojan/Generic.ASMalwS.50E8
ArcabitTrojan.ExNuma.1
MicrosoftVirTool:Win32/Pucrpt.A!MTB
GoogleDetected
AhnLab-V3Trojan/Win.Generic.R442079
VBA32BScope.TrojanSpy.Stealer
ALYacGen:Variant.ExNuma.1
MalwarebytesBackdoor.AsyncRAT
TrendMicro-HouseCallTROJ_GEN.R002C0DH222
RisingBackdoor.Bladabindi!8.B1F (CLOUD)
IkarusTrojan.Win32.Krypt
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/Kryptik.HNPY!tr
BitDefenderThetaAI:Packer.1A5F988E1E
AVGWin32:TrojanX-gen [Trj]
PandaTrj/GdSda.A
CrowdStrikewin/malicious_confidence_100% (W)

How to remove Trojan-PSW.MSIL.Growtopia.l?

Trojan-PSW.MSIL.Growtopia.l removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment