Trojan

Trojan.WebShell.MSIL information

Malware Removal

The Trojan.WebShell.MSIL is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.WebShell.MSIL virus can do?

  • CAPE extracted potentially suspicious content
  • Authenticode signature is invalid
  • Anomalous .NET characteristics

How to determine Trojan.WebShell.MSIL?



File Info:

name: B0080B1F028275F37E1F.mlw
path: /opt/CAPEv2/storage/binaries/2c48f1eeee7dbfa4a0ff55e2507ad1fb8975f1fc4b9dd6370e3aab6aabbe398d
crc32: C2FAA735
md5: b0080b1f028275f37e1f6a61bbbe4cb3
sha1: 9036d20a7b97790e4b7c2a92fcb537faa33e999d
sha256: 2c48f1eeee7dbfa4a0ff55e2507ad1fb8975f1fc4b9dd6370e3aab6aabbe398d
sha512: b09f4b000ab299906551301f20f40da66a86ada24da729dcfb321d808cd1350cadf02547a6d9af34c5cbf552d919967707a158e5b7923f42386a4f605e2f05af
ssdeep: 384:Z8drBF0cT5N3xc3kBogszC9vMqwJsttexOtKX:cHoNUvMqwJo4xOtK
type: PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
tlsh: T1CD62F81BAA65CE23C9BB673DAB329904C3BAA5174616CB1ABCDC609C0FF37141151FC6
sha3_384: 874dfc54132d54669316f7c076e5f843908874a693ecf8d226b3dcc2f28da547006573edc251450fa619731e7c2d46cd
ep_bytes: ff250020001000000000000000000000
timestamp: 2024-03-22 20:23:24


Version Info:

0: [No Data]

Trojan.WebShell.MSIL also known as:

BkavW32.AIDetectMalware.CS
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.MSILHeracles.61452
MalwarebytesTrojan.WebShell.MSIL
VIPREGen:Variant.MSILHeracles.61452
K7AntiVirusTrojan ( 005b19ee1 )
K7GWTrojan ( 005b19ee1 )
SymantecTrojan.Gen.MBT
ESET-NOD32a variant of MSIL/Webshell.EV
TrendMicro-HouseCallTROJ_GEN.R011C0DCO24
ClamAVWin.Packed.Webshell-10016062-0
KasperskyHEUR:Backdoor.MSIL.WebShell.gen
BitDefenderGen:Variant.MSILHeracles.61452
AvastWin32:BackdoorX-gen [Trj]
TencentBackdoor.MSIL.WebShell.ho
EmsisoftGen:Variant.MSILHeracles.61452 (B)
GoogleDetected
F-SecureTrojan.TR/Dropper.MSIL.Gen
DrWebBackDoor.WebshellNET.9
ZillyaTrojan.Webshell.Win32.16666
TrendMicroTROJ_GEN.R011C0DCO24
FireEyeGen:Variant.MSILHeracles.61452
IkarusTrojan.MSIL.Webshell
VaristW32/WebShell.E.gen!Eldorado
AviraTR/Dropper.MSIL.Gen
MicrosoftBackdoor:MSIL/Webshell.BB!MTB
ArcabitTrojan.MSILHeracles.DF00C
ZoneAlarmHEUR:Backdoor.MSIL.WebShell.gen
GDataMSIL.Trojan.PSE.18J0OUJ
AhnLab-V3Backdoor/Win.BackDoor.C5557957
ALYacGen:Variant.MSILHeracles.61452
MAXmalware (ai score=80)
PandaTrj/GdSda.A
SentinelOneStatic AI – Malicious PE
MaxSecureTrojan.Malware.121218.susgen
FortinetW32/Webshell.EE!tr
AVGWin32:BackdoorX-gen [Trj]

How to remove Trojan.WebShell.MSIL?

Trojan.WebShell.MSIL removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment