Trojan:MSIL/AgentTesla.ML!MTB information

Malware Removal

The Trojan:MSIL/AgentTesla.ML!MTB is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware - Review 2020

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
6-day free trial available.

What Trojan:MSIL/AgentTesla.ML!MTB virus can do?

  • The binary likely contains encrypted or compressed data.
  • Network activity detected but not expressed in API logs

Related domains:

z.whorecord.xyz
a.tomx.xyz

How to determine Trojan:MSIL/AgentTesla.ML!MTB?


File Info:

crc32: 7A241F59
md5: 89fd2d39acb29d1e884844f5b0d62e1e
name: upload_file
sha1: bbc2cc4bf2d7dc02aeed7b49e9e8370a8364a398
sha256: e8da65e395c309509563df99675f2ddaa5339b55fd944867a479ffc5d3639946
sha512: 5fb9fae153726175e0324380f2a49b7d424ff77d90b92b5a546ea1a48a1e61c9327d162a169b7de85795a1deb81be9a2133d086cb821e7882cb40359ec2b4d76
ssdeep: 12288:p7blt7t/7w70xmfceYZauLr0bOBmSKUhe6jK5sDswWnhUVb:p7Zptk70EVUauLr0CBZGWD
type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows

Version Info:

Translation: 0x0000 0x04b0
LegalCopyright: Copyright xa9 1996-2020 VideoLAN and VLC Authors
Assembly Version: 3.0.10.0
InternalName: Lime_d boytd ftp 2.0.exe
FileVersion: 3.0.10.0
CompanyName: VideoLAN
LegalTrademarks: VLC media player, VideoLAN and x264 are registered trademarks from VideoLAN
Comments: VLC media player
ProductName: VLC media player
ProductVersion: 3.0.10.0
FileDescription: VLC media player
OriginalFilename: Lime_d boytd ftp 2.0.exe

Trojan:MSIL/AgentTesla.ML!MTB also known as:

Elasticmalicious (high confidence)
MicroWorld-eScanTrojan.GenericKD.34783163
FireEyeGeneric.mg.89fd2d39acb29d1e
McAfeeArtemis!89FD2D39ACB2
CylanceUnsafe
AegisLabTrojan.Multi.Generic.4!c
SangforMalware
K7AntiVirusTrojan ( 0056fb821 )
BitDefenderTrojan.GenericKD.34783163
K7GWTrojan ( 0056fb821 )
Cybereasonmalicious.bf2d7d
TrendMicroTROJ_FRS.VSNTJF20
BitDefenderThetaGen:NN.ZemsilF.34570.Im0@aigDVE
CyrenW32/MSIL_Kryptik.BLX1.ge!Eldorado
SymantecTrojan Horse
TrendMicro-HouseCallTROJ_FRS.VSNTJF20
Paloaltogeneric.ml
KasperskyHEUR:Trojan-PSW.MSIL.Stelega.gen
AlibabaTrojanPSW:MSIL/Stelega.eb92814f
APEXMalicious
TencentMsil.Trojan-qqpass.Qqrob.Eert
Ad-AwareTrojan.GenericKD.34783163
SophosTroj/MSIL-PXR
F-SecureTrojan.TR/AD.AgentTesla.arvtz
DrWebBackDoor.SpyBotNET.25
InvinceaMal/Generic-S + Troj/MSIL-PXR
McAfee-GW-EditionArtemis!Trojan
EmsisoftTrojan.GenericKD.34783163 (B)
IkarusTrojan.Agent
GDataTrojan.GenericKD.34783163
WebrootW32.Trojan.Gen
AviraTR/AD.AgentTesla.arvtz
MAXmalware (ai score=85)
ArcabitTrojan.Generic.D212BFBB
ZoneAlarmHEUR:Trojan-PSW.MSIL.Stelega.gen
MicrosoftTrojan:MSIL/AgentTesla.ML!MTB
CynetMalicious (score: 85)
MalwarebytesTrojan.MalPack.MSIL
ESET-NOD32MSIL/Spy.Agent.AES
SentinelOneDFI – Malicious PE
FortinetAdware/GenKryptik
AVGFileRepMalware
CrowdStrikewin/malicious_confidence_90% (W)
Qihoo-360Generic/HEUR/QVM03.0.9A15.Malware.Gen

How to remove Trojan:MSIL/AgentTesla.ML!MTB?

Trojan:MSIL/AgentTesla.ML!MTB removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

Leave a Comment