About “Trojan-Spy.MSIL.KeyLogger.cuga” infection

The Trojan-Spy.MSIL.KeyLogger.cuga is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Trojan-Spy.MSIL.KeyLogger.cuga virus can do?

CAPE extracted potentially suspicious content
Authenticode signature is invalid

How to determine Trojan-Spy.MSIL.KeyLogger.cuga?


File Info:
name: B44025B131EB0F067653.mlw
path: /opt/CAPEv2/storage/binaries/e64283a6e0c355ecc13740ec7135ec3de684a0288affacecd1df178c8409a343
crc32: 87267665
md5: b44025b131eb0f06765340dbcdc26d9a
sha1: 931d32436259d4764417d2ef00929f28de5b6077
sha256: e64283a6e0c355ecc13740ec7135ec3de684a0288affacecd1df178c8409a343
sha512: abab76094432aa064cf7745aa45f6340e09a5508b4df5be3bd5de0179538f8bf0cfffd979c1c3d34417a406edb970afbc821e926c467a08df63aad9beb6e8e14
ssdeep: 384:MjbdVX0muQkJ51Lo4xUtPdL2It8cYnHGAHYmWCOVlA66fQfN:+fX9uQU5Fo4xA2GqOVS6zf
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1CC524B59C3E4C376C5BD0B71A867AE400772DA51C817EF2E5ECC600A5E7324487A3BB1
sha3_384: 2743f17b4656eb766a65699aa7da1b0728c9d26f16272079afdd3fea54ccfe904aedd79e00df8f6f2f614217c35ea77a
ep_bytes: ff250020400000000000000000000000
timestamp: 2018-03-27 16:36:13

Version Info:
Translation: 0x0000 0x04b0
Comments: 
CompanyName: 
FileDescription: WindowsApp1
FileVersion: 1.0.0.0
InternalName: WindowsApp1.exe
LegalCopyright: Copyright ©  2018
LegalTrademarks: 
OriginalFilename: WindowsApp1.exe
ProductName: WindowsApp1
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

Trojan-Spy.MSIL.KeyLogger.cuga also known as:

Bkav	W32.AIDetectMalware.CS
Lionic	Trojan.Win32.KeyLogger.l!c
Skyhigh	RDN/Generic PWS.y
McAfee	RDN/Generic PWS.y
Malwarebytes	Generic.Malware/Suspicious
Zillya	Trojan.Keylogger.Win32.58492
Sangfor	Spyware.Win32.KeyLogger.Vzko
Alibaba	TrojanSpy:MSIL/KeyLogger.c967f8f0
Symantec	Trojan.Gen.MBT
TrendMicro-HouseCall	TROJ_GEN.R002C0PAF24
Kaspersky	Trojan-Spy.MSIL.KeyLogger.cuga
NANO-Antivirus	Trojan.Win32.KeyLogger.ezgpeh
Avast	Win32:Malware-gen
TrendMicro	TROJ_GEN.R002C0PAF24
Trapmine	suspicious.low.ml.score
Sophos	Mal/Generic-S
Google	Detected
Antiy-AVL	Trojan[Spy]/MSIL.KeyLogger
Microsoft	Trojan:Win32/Wacatac.B!ml
Xcitium	Malware@#2xecaa37jn8v7
ZoneAlarm	Trojan-Spy.MSIL.KeyLogger.cuga
Cylance	unsafe
Panda	Trj/GdSda.A
Rising	Spyware.KeyLogger!8.12F (CLOUD)
Yandex	TrojanSpy.KeyLogger!Pb+eKimSsXs
Ikarus	Trojan.Dropper
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	W32/KeyLogger.CUGA!tr
AVG	Win32:Malware-gen
DeepInstinct	MALICIOUS

How to remove Trojan-Spy.MSIL.KeyLogger.cuga?

Trojan-Spy.MSIL.KeyLogger.cuga removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X