Trojan

Trojan:MSIL/AgentTesla.LRB!MTB removal

Malware Removal

The Trojan:MSIL/AgentTesla.LRB!MTB is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan:MSIL/AgentTesla.LRB!MTB virus can do?

  • Dynamic (imported) function loading detected
  • CAPE extracted potentially suspicious content
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid

How to determine Trojan:MSIL/AgentTesla.LRB!MTB?



File Info:

name: 5CC6FC2F78336352BAC6.mlw
path: /opt/CAPEv2/storage/binaries/eec88ca50dfe87580123cd0d582b1196bc974efdbecb256d5e59dc52ca6d48d4
crc32: CD764A1E
md5: 5cc6fc2f78336352bac6975edafa2c1a
sha1: ccb86ddabe85e1ef348ff3dc5f24577040da5f28
sha256: eec88ca50dfe87580123cd0d582b1196bc974efdbecb256d5e59dc52ca6d48d4
sha512: 2625083acdf607189a41b24f9da874f37714d43318718b2e5291e0fb0651462ffee4c2b11f4f69884f85d222a0d8955158dacad0afb10226c92aa9d9b78b33a7
ssdeep: 6144:5fUCanzbv0tIO2Q4wB45KYm1WkqbMB50Q7FbjDtnFxCW9+Z4+IBkFqQ4MB45KYmN:9OjwBJ1WHwqQ7v54HIBkGMBJ1
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T121C4F1247BF8AF65D4B88BFC516A26148BF4752BF002D78A0EC631CB2AB1F535A50D17
sha3_384: 5ee0a46503c679c3d2b9f28bb3860bea68920860453d486cd3a5a914d2a04c180732ed381c1673cfdabe091952bd1e77
ep_bytes: ff250020400009000000060000000600
timestamp: 2021-12-01 01:36:15


Version Info:

Translation: 0x0000 0x04b0
Comments: USB to MIDI translation
CompanyName: Magnus Ellinge, Bastian Damman
FileDescription: PS360 MIDI Drummer
FileVersion: 0.2.1.0
InternalName: WriteAsyncInternald.exe
LegalCopyright: Magnus Ellinge 2009, Bastian Damman 2011
LegalTrademarks: 
OriginalFilename: WriteAsyncInternald.exe
ProductName: PS360 MIDI Drummer
ProductVersion: 0.2.1.0
Assembly Version: 0.2.1.0

Trojan:MSIL/AgentTesla.LRB!MTB also known as:

LionicTrojan.MSIL.Injuke.4!c
MicroWorld-eScanTrojan.GenericKD.47576504
FireEyeTrojan.GenericKD.47576504
CAT-QuickHealTrojan.MSIL
ALYacTrojan.GenericKD.47576504
CylanceUnsafe
K7AntiVirusTrojan ( 0058b34c1 )
AlibabaTrojan:MSIL/AgentTesla.4a43781d
K7GWTrojan ( 0058b34c1 )
CyrenW32/MSIL_Agent.CLH.gen!Eldorado
SymantecTrojan.Gen.9
ESET-NOD32a variant of MSIL/Kryptik.ADPJ
APEXMalicious
KasperskyHEUR:Trojan.MSIL.Injuke.gen
BitDefenderTrojan.GenericKD.47576504
AvastWin32:PWSX-gen [Trj]
Ad-AwareTrojan.GenericKD.47576504
SophosMal/Generic-R + Troj/MSIL-SBP
ComodoTrojWare.Win32.Agent.cfppp@0
DrWebTrojan.MulDrop19.9749
ZillyaTrojan.Kryptik.Win32.3638307
TrendMicroTROJ_GEN.R002C0WL121
McAfee-GW-EditionRDN/Generic.hbg
EmsisoftTrojan.Crypt (A)
IkarusTrojan-Spy.Guloader
GDataMSIL.Trojan.PSE.1E5GZVX
WebrootW32.Trojan.Gen
Antiy-AVLTrojan/Generic.ASMalwS.34E41E9
KingsoftWin32.Troj.Undef.(kcloud)
ArcabitTrojan.Generic.D2D5F5B8
MicrosoftTrojan:MSIL/AgentTesla.LRB!MTB
CynetMalicious (score: 100)
AhnLab-V3Malware/Win.Generic.C4802700
McAfeeRDN/Generic.hbg
MAXmalware (ai score=100)
VBA32TScope.Trojan.MSIL
MalwarebytesTrojan.Injector
TrendMicro-HouseCallTROJ_GEN.R002C0WL121
YandexTrojan.Injuke!ER3R8mdTyDw
SentinelOneStatic AI – Suspicious PE
MaxSecureTrojan.Malware.300983.susgen
FortinetMSIL/GenKryptik.FNRK!tr
AVGWin32:PWSX-gen [Trj]
PandaTrj/GdSda.A
CrowdStrikewin/malicious_confidence_100% (W)

How to remove Trojan:MSIL/AgentTesla.LRB!MTB?

Trojan:MSIL/AgentTesla.LRB!MTB removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment