Spy Trojan

About “TrojanSpy:MSIL/AgentTesla.PCE!MTB” infection

Malware Removal

The TrojanSpy:MSIL/AgentTesla.PCE!MTB is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What TrojanSpy:MSIL/AgentTesla.PCE!MTB virus can do?

  • Injection (inter-process)
  • Injection with CreateRemoteThread in a remote process
  • Uses Windows utilities for basic functionality
  • A potential decoy document was displayed to the user
  • Network activity detected but not expressed in API logs

How to determine TrojanSpy:MSIL/AgentTesla.PCE!MTB?



File Info:

crc32: ED51BA61
md5: f5b78c1bc71db6fccaedaefaec4b2f25
name: upload_file
sha1: 8c27776f2b9a2e9d79c7d8d0f2b66e40b2d8fa44
sha256: 037a3de09b05bc7a9de39f068e8e5848827040b731a6d5baab940217067a2a29
sha512: 828e4203e387e94a124a5f9a819be5bdd25819e7a6e6907b3bb105ca87f4d1b9aee4843e676e5782ce97d60f78830d8ca841e052d1cfc922221598dcd7911be0
ssdeep: 12288:8Gk++rOJoWiZTwUE9bRL8GsaezeXIfr05mS3O1r5:8lRrOJoTZT2b1TfyeYMb8
type: # UDF filesystem data (version 1.5) 'DESKTOP'


Version Info:

0: [No Data]

TrojanSpy:MSIL/AgentTesla.PCE!MTB also known as:

FireEyeTrojan.GenericKD.34587637
McAfeeFareit-FXO!90AA5BAB4B53
SangforMalware
InvinceaMal/Generic-S
CyrenW32/MSIL_Kryptik.BTE.gen!Eldorado
SymantecTrojan.Gen.NPE
TrendMicro-HouseCallMal_GENISO-3
KasperskyHEUR:Trojan-PSW.MSIL.Stelega.gen
BitDefenderTrojan.GenericKD.34587637
AegisLabTrojan.Multi.Generic.4!c
SophosMal/Generic-S
F-SecureTrojan.TR/Kryptik.vngsy
DrWebTrojan.Inject4.1657
TrendMicroMal_GENISO-3
McAfee-GW-EditionFareit-FXO!90AA5BAB4B53
EmsisoftTrojan.GenericKD.34587637 (B)
AviraTR/Kryptik.vngsy
MicrosoftTrojanSpy:MSIL/AgentTesla.PCE!MTB
ArcabitTrojan.Generic.D20FC3F5
ZoneAlarmHEUR:Trojan-PSW.MSIL.Stelega.gen
GDataArchive.Trojan.Agent.H7U8YO
BitDefenderThetaGen:NN.ZemsilF.34254.Wm0@a4!tPEn
MAXmalware (ai score=82)
ESET-NOD32a variant of MSIL/GenKryptik.ESZU
IkarusTrojan.MSIL.Krypt
FortinetMSIL/GenKryptik.ESTS!tr
Qihoo-360Generic/Trojan.PSW.c9f

How to remove TrojanSpy:MSIL/AgentTesla.PCE!MTB?

TrojanSpy:MSIL/AgentTesla.PCE!MTB removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment