Trojan

How to remove “Trojan:MSIL/SnakeKeylogger.SPDS!MTB”?

Malware Removal

The Trojan:MSIL/SnakeKeylogger.SPDS!MTB is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan:MSIL/SnakeKeylogger.SPDS!MTB virus can do?

  • CAPE extracted potentially suspicious content
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • Binary compilation timestomping detected

How to determine Trojan:MSIL/SnakeKeylogger.SPDS!MTB?



File Info:

name: 108008CC64021D8956D2.mlw
path: /opt/CAPEv2/storage/binaries/aea9f3a5b0b8c4666ab439cb138d073d3458da186b4e09c02c6e7c7c10f1ee91
crc32: 0083B90B
md5: 108008cc64021d8956d298e3c8222e10
sha1: a45f723e9662563780739a1bd148a0c923cc1530
sha256: aea9f3a5b0b8c4666ab439cb138d073d3458da186b4e09c02c6e7c7c10f1ee91
sha512: ad4bb7a38cd0b4d54e9d360b7a9ef4045b612613a273b734a61236ccf0c173451acb589d2e3d569574005638e03231ce0519a38685cf6a554ebe09c06de366b0
ssdeep: 12288:abEcmhVDQyP8zyvHcTmCU2I1SMHatFpKtOi4e:TFvP8zyv6mCU2ptFpzH
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T18B456DC172B084A3E89F05B35D39A42C1876BE4E6095D32D7A6B7706627233372AFF45
sha3_384: c3b1a6a680a0ae8b109c277f339635b5c71de5c060d3e87eb6fafa326200efe1438ea7cad83ed98ca73b95b7b7f796f4
ep_bytes: ff2500204000c0a80055000000000000
timestamp: 2102-04-24 22:33:03


Version Info:

Translation: 0x0000 0x04b0
Comments: 
CompanyName: 
FileDescription: DemonProgram
FileVersion: 1.0.0.0
InternalName: HjpQ.exe
LegalCopyright: Copyright ©  2021
LegalTrademarks: 
OriginalFilename: HjpQ.exe
ProductName: DemonProgram
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

Trojan:MSIL/SnakeKeylogger.SPDS!MTB also known as:

BkavW32.AIDetectMalware.CS
LionicTrojan.Win32.Disco.i!c
Elasticmalicious (high confidence)
DrWebTrojan.PackedNET.1903
MicroWorld-eScanGen:Variant.Ransom.Loki.24223
FireEyeGeneric.mg.108008cc64021d89
CAT-QuickHealTrojan.GenericFC.S30117360
SkyhighPWS-FDOO!108008CC6402
McAfeePWS-FDOO!108008CC6402
Cylanceunsafe
ZillyaTrojan.GenKryptik.Win32.170962
SangforTrojan.Win32.Save.a
CrowdStrikewin/malicious_confidence_100% (W)
AlibabaTrojanPSW:MSIL/SnakeKeylogger.3ad4ffa7
K7GWTrojan ( 005a12b01 )
K7AntiVirusTrojan ( 005a12b01 )
VirITTrojan.Win32.PSWStealer.EXS
SymantecMSIL.Packed.38
tehtrisGeneric.Malware
ESET-NOD32a variant of MSIL/GenKryptik.FUVR
APEXMalicious
TrendMicro-HouseCallTROJ_GEN.R002C0DBQ24
AvastWin32:PWSX-gen [Trj]
KasperskyHEUR:Trojan-PSW.MSIL.Disco.gen
BitDefenderGen:Variant.Ransom.Loki.24223
NANO-AntivirusTrojan.Win32.Disco.jvykcj
TencentMalware.Win32.Gencirc.13b7cf39
EmsisoftGen:Variant.Ransom.Loki.24223 (B)
GoogleDetected
F-SecureHeuristic.HEUR/AGEN.1371098
VIPREGen:Variant.Ransom.Loki.24223
TrendMicroTROJ_GEN.R002C0DBQ24
SophosTroj/Krypt-ABH
IkarusTrojan.MSIL.Krypt
VaristW32/MSIL_Kryptik.JCC.gen!Eldorado
AviraHEUR/AGEN.1371098
MAXmalware (ai score=85)
Antiy-AVLTrojan/MSIL.GenKryptik
Kingsoftmalware.kb.c.905
MicrosoftTrojan:MSIL/SnakeKeylogger.SPDS!MTB
XcitiumMalware@#26r7zx6ec7lyp
ArcabitTrojan.Ransom.Loki.D5E9F
ZoneAlarmHEUR:Trojan-PSW.MSIL.Disco.gen
GDataGen:Variant.Ransom.Loki.24223
AhnLab-V3Trojan/Win.Generic.R423944
VBA32TScope.Trojan.MSIL
ALYacGen:Variant.Ransom.Loki.24223
MalwarebytesCrypt.Trojan.MSIL.DDS
PandaTrj/GdSda.A
RisingMalware.Obfus/MSIL@AI.100 (RDM.MSIL2:ioQTy2BfXdJ8EOs/7UHX7w)
YandexTrojan.Igent.bZN4iw.1
SentinelOneStatic AI – Malicious PE
MaxSecureTrojan.Malware.115904540.susgen
FortinetMSIL/GenKryptik.GGNZ!tr
AVGWin32:PWSX-gen [Trj]
Cybereasonmalicious.c64021
DeepInstinctMALICIOUS
alibabacloudTrojan

How to remove Trojan:MSIL/SnakeKeylogger.SPDS!MTB?

Trojan:MSIL/SnakeKeylogger.SPDS!MTB removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment