Ransom • Trojan

UDS:Trojan-Ransom.MSIL.Phny removal

The UDS:Trojan-Ransom.MSIL.Phny is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What UDS:Trojan-Ransom.MSIL.Phny virus can do?

Anomalous binary characteristics

How to determine UDS:Trojan-Ransom.MSIL.Phny?


File Info:
crc32: CFAA0706
md5: e38cf57df64e4217efe511135326552c
name: E38CF57DF64E4217EFE511135326552C.mlw
sha1: 3b7bc593af0a249514594574adaed0cbba65f67c
sha256: 715c0a30d38894f52c789730719c857d1576453039af3a3648ecd00a8cc2db35
sha512: cc0f90c5c3c5dc14f71cf7b5dc26347576256a40ed607289682fb6bdb6aa56528ccf61929cc64a4687e698be70a9915bb510896e51d2b8c242c1b13eeef2c05b
ssdeep: 1536:meQP3EBoGir1T0hPT03RqqPhbRUCwRZu85uXB+GvwI9RNqttLi4Npip+EmMyPhX:me2lT0aqyUJRA8wRaI9ejLi4bipny5X
type: PE32+ executable (GUI) x86-64 Mono/.Net assembly, for MS Windows

Version Info:
Translation: 0x0000 0x04b0
LegalCopyright:  
Assembly Version: 0.0.0.0
InternalName: TLG4.exe
FileVersion: 0.0.0.0
ProductVersion: 0.0.0.0
FileDescription:  
OriginalFilename: TLG4.exe

UDS:Trojan-Ransom.MSIL.Phny also known as:

Lionic	Trojan.MSIL.Bladabindi.m!c
Cynet	Malicious (score: 99)
Cylance	Unsafe
CrowdStrike	win/malicious_confidence_70% (W)
Cybereason	malicious.3af0a2
Symantec	Trojan.Gen.MBT
APEX	Malicious
Avast	Win64:DropperX-gen [Drp]
Kaspersky	UDS:Trojan-Ransom.MSIL.Phny.gen
Sophos	ML/PE-A
McAfee-GW-Edition	BehavesLike.Win64.Infected.mh
FireEye	Generic.mg.e38cf57df64e4217
SentinelOne	Static AI – Malicious PE
Avira	HEUR/AGEN.1122383
Microsoft	Trojan:Win32/Sabsik.FL.B!ml
AhnLab-V3	Trojan/Win.Generic.C4623747
McAfee	Artemis!E38CF57DF64E
MaxSecure	Trojan.Malware.300983.susgen
AVG	Win64:DropperX-gen [Drp]
Paloalto	generic.ml

How to remove UDS:Trojan-Ransom.MSIL.Phny?

UDS:Trojan-Ransom.MSIL.Phny removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X