Trojan

Trojan:MSIL/Mogoogwi.A removal instruction

Malware Removal

The Trojan:MSIL/Mogoogwi.A is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan:MSIL/Mogoogwi.A virus can do?

  • CAPE extracted potentially suspicious content
  • Authenticode signature is invalid
  • Anomalous .NET characteristics

How to determine Trojan:MSIL/Mogoogwi.A?



File Info:

name: AC6E5D69E18F6F8E4631.mlw
path: /opt/CAPEv2/storage/binaries/096673dda307173ca3a6787d9eef5353f52049906c7e9510ba17095f5d0d545c
crc32: 1C03A6A2
md5: ac6e5d69e18f6f8e46316c543e6aa5cb
sha1: 4e0380c7e759098025ccd0761b79cb0c2eb1c689
sha256: 096673dda307173ca3a6787d9eef5353f52049906c7e9510ba17095f5d0d545c
sha512: 5971e312d08313e9a44200455d4a978ccb8f36dd389f6dee4c005dedad1d2bf048c13480ebb44debfebed9bfb053e0ab84e1abb66a5d73acd354fdf76cf2c15c
ssdeep: 96:Buz4E254C2s4y2emZNYrhkmuNMWSoUp9TcE2NYlnlYJnLrL0KffvzBEGwv19RXmY:Bui+mrVWSPGVQnlYJLrLTjidDN
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T1E9E1D81623F14275CA5B0B772CB302411773EA05CE67EB6F088CA3E5C9E31654A62E72
sha3_384: 825a59fc3f7ab67f31d676e3ea2346b466ccc2e3fc4f40f1a65dd4da170136a2644a81a3cbacb1165e268716e857ddb7
ep_bytes: ff250020400000000000000000000000
timestamp: 2017-05-11 01:43:07


Version Info:

Translation: 0x0000 0x04b0
FileDescription:  
FileVersion: 0.0.0.0
InternalName: Mozilla.exe
LegalCopyright:  
OriginalFilename: Mozilla.exe
ProductVersion: 0.0.0.0
Assembly Version: 0.0.0.0

Trojan:MSIL/Mogoogwi.A also known as:

BkavW32.FamVT.CerbuPKG.Trojan
LionicTrojan.Win32.Generic.4!c
Elasticmalicious (high confidence)
CynetMalicious (score: 100)
FireEyeGeneric.mg.ac6e5d69e18f6f8e
CAT-QuickHealTrojan.Mogoogwi.A3
McAfeeTrojan-FMGK!AC6E5D69E18F
MalwarebytesGeneric.Trojan.MSIL.DDS
VIPRETrojan.Agent.DACI
SangforSuspicious.Win32.Save.a
CrowdStrikewin/malicious_confidence_100% (W)
K7GWTrojan ( 004be57a1 )
K7AntiVirusTrojan ( 004be57a1 )
VirITTrojan.Win32.Generic.BAMF
CyrenW32/S-f2a4b9c7!Eldorado
SymantecTrojan Horse
ESET-NOD32MSIL/Agent.QIF
APEXMalicious
ClamAVWin.Malware.Barys-6804071-0
KasperskyHEUR:Trojan.Win32.Generic
BitDefenderTrojan.Agent.DACI
NANO-AntivirusTrojan.Win32.Agent.dzsvxi
SUPERAntiSpywareBackdoor.Bot/Variant
MicroWorld-eScanTrojan.Agent.DACI
AvastMSIL:Agent-CWF [Trj]
TencentTrojan.MSIL.Agent.hk
EmsisoftTrojan.Agent.DACI (B)
F-SecureTrojan.TR/Mogoogwi.qifa
DrWebTrojan.Siggen7.31585
ZillyaTrojan.Agent.Win32.525695
TrendMicroWORM_MOGOOGWI.SMHA
McAfee-GW-EditionBehavesLike.Win32.Trojan.zt
Trapminemalicious.high.ml.score
SophosTroj/MSIL-CWS
IkarusTrojan.MSIL.Mogoogwi
GDataTrojan.Agent.DACI
JiangminTrojan.Generic01.a
AviraTR/Mogoogwi.qifa
MAXmalware (ai score=89)
Antiy-AVLTrojan/Win32.Agent
XcitiumTrojWare.MSIL.Agent.QIF@6kzu82
ArcabitTrojan.Agent.DACI
ViRobotTrojan.Win32.Agent.7168.FI
ZoneAlarmHEUR:Trojan.Win32.Generic
MicrosoftTrojan:MSIL/Mogoogwi.A
GoogleDetected
AhnLab-V3Trojan/Win32.Zusy.R154407
BitDefenderThetaGen:NN.ZemsilF.36196.am0@a0gO5Tm
ALYacTrojan.Agent.DACI
TACHYONTrojan/W32.DN-Agent.7168.AL
VBA32TScope.Trojan.MSIL
Cylanceunsafe
PandaTrj/CI.A
TrendMicro-HouseCallWORM_MOGOOGWI.SMHA
RisingTrojan.Mogoogwi!1.A1A3 (CLASSIC)
SentinelOneStatic AI – Malicious PE
MaxSecureTrojan.Malware.300983.susgen
FortinetMSIL/Agent.QIF!tr
AVGMSIL:Agent-CWF [Trj]
DeepInstinctMALICIOUS

How to remove Trojan:MSIL/Mogoogwi.A?

Trojan:MSIL/Mogoogwi.A removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment