Trojan

TrojanDownloader:MSIL/Tnega.XJ!MTB removal

Malware Removal

The TrojanDownloader:MSIL/Tnega.XJ!MTB is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What TrojanDownloader:MSIL/Tnega.XJ!MTB virus can do?

  • Dynamic (imported) function loading detected
  • CAPE extracted potentially suspicious content
  • Authenticode signature is invalid

How to determine TrojanDownloader:MSIL/Tnega.XJ!MTB?



File Info:

name: 046926FC6EAE37CC1EE5.mlw
path: /opt/CAPEv2/storage/binaries/ff2af103fac89cfcf91501d4451aaf86903f4d1031fb99e4b9e0573730b11fa4
crc32: 88C0321B
md5: 046926fc6eae37cc1ee5a162132d9a02
sha1: 4aa96c76d4da767045d5a905528270bc3d2f4922
sha256: ff2af103fac89cfcf91501d4451aaf86903f4d1031fb99e4b9e0573730b11fa4
sha512: ade40bf8cbe98f28b91a00d92fe8bf7a36d658a675b9fad3fbc65ac6322e7bf5f39a7ca61b31757d98263c2fada9250a2c9ad2628acd3ab7327fbc537e8a2cfd
ssdeep: 192:tAYJYrLtp6LHYi9zm+4yiKUxGNLnQm/VG/jU2ap7SVyilACUMDVAuvRzyAw9GTeT:tvGuLH1VFgSLR7Gyiu2bZw9+e5auV
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1D1733B75A7EC9123D5D04A37F85282B806376D125C81FA1BB944BE4D3BB19C88F2CE6D
sha3_384: 05c0c0f75ff058bc9874240e883d6359f4e368574aa420aca88e7d31cee14cfa45c40e5741b8af761914eeb498e7f0ef
ep_bytes: ff250020400000000000000000000000
timestamp: 2022-03-27 17:00:40


Version Info:

Translation: 0x0000 0x04b0
Comments: Google Update Setup
CompanyName: Google LLC
FileDescription: Google Update Setup
FileVersion: 1.3.36.122
InternalName: Mgngnyzw.exe
LegalCopyright: Copyright 2018 Google LLC
LegalTrademarks: 
OriginalFilename: Mgngnyzw.exe
ProductName: Google Update
ProductVersion: 1.3.36.122
Assembly Version: 1.3.36.122

TrojanDownloader:MSIL/Tnega.XJ!MTB also known as:

BkavW32.Common.561863AA
LionicTrojan.MSIL.Stealer.l!c
MicroWorld-eScanTrojan.GenericKD.39365619
CAT-QuickHealTrojan.YakbeexMSIL.ZZ4
ALYacTrojan.GenericKD.39365619
CylanceUnsafe
SangforSuspicious.Win32.Save.a
K7AntiVirusTrojan-Downloader ( 005901ae1 )
AlibabaTrojanSpy:MSIL/Stealer.88a568e9
K7GWTrojan-Downloader ( 005901ae1 )
Cybereasonmalicious.6d4da7
CyrenW32/MSIL_Kryptik.GRB.gen!Eldorado
Elasticmalicious (high confidence)
ESET-NOD32a variant of MSIL/TrojanDownloader.Agent.LBV
APEXMalicious
Paloaltogeneric.ml
KasperskyHEUR:Trojan-Downloader.MSIL.Wagex.gen
BitDefenderTrojan.GenericKD.39365619
AvastWin32:PWSX-gen [Trj]
TencentMsil.Trojan-downloader.Agent.Duv
Ad-AwareTrojan.GenericKD.39365619
EmsisoftTrojan.GenericKD.39365619 (B)
ComodoMalware@#2am9ufurpsiwh
DrWebTrojan.PWS.Stealer.32732
ZillyaTrojan.Agent.Win32.2746657
TrendMicroTROJ_GEN.R002C0WCV22
McAfee-GW-EditionRDN/Sabsik
Trapminemalicious.moderate.ml.score
FireEyeGeneric.mg.046926fc6eae37cc
SophosMal/Generic-S
SentinelOneStatic AI – Malicious PE
GDataTrojan.GenericKD.39365619
JiangminTrojanSpy.MSIL.chgi
AviraTR/Spy.Stealer.uoorj
ArcabitTrojan.Generic.D258ABF3
MicrosoftTrojanDownloader:MSIL/Tnega.XJ!MTB
CynetMalicious (score: 100)
AhnLab-V3Trojan/Win.Sabsik.C5033889
McAfeeRDN/Sabsik
MAXmalware (ai score=85)
VBA32TrojanSpy.MSIL.Stealer
MalwarebytesSpyware.PasswordStealer
TrendMicro-HouseCallTROJ_GEN.R002C0WCV22
RisingMalware.Obfus/MSIL@AI.90 (RDM.MSIL:Ul0WiMShd1b6EouFtLFmhw)
YandexTrojan.DL.Agent!XLbD8E1DRBw
IkarusTrojan-Downloader.MSIL.Small
MaxSecureTrojan.Malware.73709669.susgen
FortinetPossibleThreat.MU
BitDefenderThetaGen:NN.ZemsilF.34742.em0@aa2pddj
AVGWin32:PWSX-gen [Trj]
CrowdStrikewin/malicious_confidence_100% (W)

How to remove TrojanDownloader:MSIL/Tnega.XJ!MTB?

TrojanDownloader:MSIL/Tnega.XJ!MTB removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment