Trojan

TrojanDownloader:MSIL/BaseLoader.GNF!MTB malicious file

Malware Removal

The TrojanDownloader:MSIL/BaseLoader.GNF!MTB is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What TrojanDownloader:MSIL/BaseLoader.GNF!MTB virus can do?

  • CAPE extracted potentially suspicious content
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid

How to determine TrojanDownloader:MSIL/BaseLoader.GNF!MTB?



File Info:

name: 66C80F83BAF297852943.mlw
path: /opt/CAPEv2/storage/binaries/8dc4094d05cdf3c24e3b26147f86955c9ab5b329c15b8bcf4819e1568c16c36b
crc32: EF43F6EF
md5: 66c80f83baf2978529435f5548799c2a
sha1: 660595943e98f5dc67de8a3391308cbfee70caee
sha256: 8dc4094d05cdf3c24e3b26147f86955c9ab5b329c15b8bcf4819e1568c16c36b
sha512: 870f3f1851b38b7f432fafa2bfdbb5c84525df731d18bc3037e7f4e0e367d5c483b1a8245c859e6953bb657a9de2ccd33ac7fd176159f7b14df0d6ff0a6c3882
ssdeep: 24576:BoYfyv2xrfvKyhSkRfkvQ6GLTSJePwjC:Bo/v2xrfl6GSeY
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1F655BE153784EE19F0BF4B7AA462441483F5E913E35AEF9EBED101EA0E52751EA0F213
sha3_384: e4ebd183ff35b6f9d6e215304b3d4836a3769f065744fcb2037ac943c009721e695005eda3acd4aa2541a9347706f133
ep_bytes: ff250020400000000000445854310000
timestamp: 2023-11-24 04:11:21


Version Info:

Translation: 0x0000 0x04b0
Comments: View Internal Aika Database Items
CompanyName: Dogskull Software
FileDescription: Aika Reliquary
FileVersion: 2.6.0.3
InternalName: Reliquary.exe
LegalCopyright: Copyright © DogskullSoftware 2013-2023
LegalTrademarks: 
OriginalFilename: Reliquary.exe
ProductName: Aika Reliquary
ProductVersion: 2.6.0.3
Assembly Version: 2.6.0.3

TrojanDownloader:MSIL/BaseLoader.GNF!MTB also known as:

BkavW32.AIDetectMalware.CS
LionicTrojan.Win32.BaseLoader.4!c
SkyhighArtemis!Trojan
McAfeeGenericRXAA-AA!66C80F83BAF2
Cylanceunsafe
AlibabaTrojanDownloader:MSIL/BaseLoader.3a94d6f0
K7GWRiskware ( 00584baa1 )
K7AntiVirusRiskware ( 00584baa1 )
SymantecML.Attribute.HighConfidence
CynetMalicious (score: 99)
AvastWin32:DropperX-gen [Drp]
TencentMalware.Win32.Gencirc.11b9404d
F-SecureTrojan.TR/Redcap.grzjv
TrendMicroTROJ_GEN.R002C0DKU23
SophosMal/Generic-S
IkarusTrojan.IL.MSILZilla
VaristW32/ABRisk.XIER-0236
AviraTR/Redcap.grzjv
Antiy-AVLTrojan[Downloader]/MSIL.BaseLoader
MicrosoftTrojanDownloader:MSIL/BaseLoader.GNF!MTB
GoogleDetected
AhnLab-V3Dropper/Win.Generic.C5552226
MalwarebytesMalware.AI.330188329
PandaTrj/Chgt.AD
TrendMicro-HouseCallTROJ_GEN.R002C0DKU23
RisingDownloader.BaseLoader!8.123FC (CLOUD)
MaxSecureTrojan.Malware.220903313.susgen
FortinetPossibleThreat
AVGWin32:DropperX-gen [Drp]
DeepInstinctMALICIOUS

How to remove TrojanDownloader:MSIL/BaseLoader.GNF!MTB?

TrojanDownloader:MSIL/BaseLoader.GNF!MTB removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment