Malware

About “VirTool:MSIL/Obfuscator.AZ” infection

Malware Removal

The VirTool:MSIL/Obfuscator.AZ is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What VirTool:MSIL/Obfuscator.AZ virus can do?

  • The binary likely contains encrypted or compressed data.
  • Network activity detected but not expressed in API logs

How to determine VirTool:MSIL/Obfuscator.AZ?



File Info:

crc32: 8E3A3C60
md5: 62aa79c2aa1e9d9944b91def363ce6b3
name: 62AA79C2AA1E9D9944B91DEF363CE6B3.mlw
sha1: bd3f25599bb8de685381f82a63d7aa825bcc1c77
sha256: 1e429e04401f8c445295db234231511addeb3ad015ca5b407f0a9c630eb94c03
sha512: 76e54dd2aee78fd3ef688d68254c355bf122f71cb13047b0f197767a8b4fe4f457ac7b2ba50b463bdb1f40dcc8dd6cd0aaab154dad3690d540b17e213e631763
ssdeep: 6144:278IYq05JAHx0/WxhP9h0R6MIzSLi/KsAFE8qU2:kN05JA0/xR3I2LiytP2
type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows


Version Info:

Translation: 0x0000 0x04b0
LegalCopyright: Copyright (C) 2014 Valve Corporation
Assembly Version: 0.0.0.0
InternalName: Steam.exe
FileVersion: 0.0.0.0
CompanyName: Valve Corporation
Comments: Steam Client WebHelper
ProductName: Steam Guard
ProductVersion: 0.0.0.0
FileDescription: Steam Client WebHelper
OriginalFilename: Steam.exe

VirTool:MSIL/Obfuscator.AZ also known as:

K7AntiVirusTrojan ( 004e305f1 )
LionicTrojan.Win32.Generic.ly4v
Elasticmalicious (high confidence)
DrWebTrojan.DownLoader11.29355
CynetMalicious (score: 100)
ALYacTrojan.GenericKD.41908359
CylanceUnsafe
ZillyaTrojan.Generic.Win32.81963
CrowdStrikewin/malicious_confidence_90% (D)
AlibabaTrojan:MSIL/Injector.9ff2869f
K7GWTrojan ( 004e305f1 )
Cybereasonmalicious.2aa1e9
CyrenW32/S-4a2de5be!Eldorado
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of MSIL/Injector.RF
APEXMalicious
AvastMSIL:Crypt-HR [Trj]
KasperskyHEUR:Trojan.Win32.Generic
BitDefenderTrojan.GenericKD.41908359
NANO-AntivirusTrojan.Win32.Dwn.dhxxxe
MicroWorld-eScanTrojan.GenericKD.41908359
TencentWin32.Trojan.Generic.Wogg
Ad-AwareTrojan.GenericKD.41908359
SophosML/PE-A + Troj/MSILInj-GE
ComodoMalware@#1l00fpvf8wje1
F-SecureTrojan.TR/Dropper.Gen
BitDefenderThetaGen:NN.ZemsilF.34266.pm1@aqikpQj
VIPRETrojan.Win32.Generic!BT
McAfee-GW-EditionBehavesLike.Win32.Generic.dc
FireEyeGeneric.mg.62aa79c2aa1e9d99
EmsisoftTrojan.GenericKD.41908359 (B)
SentinelOneStatic AI – Malicious PE
JiangminTrojan.Generic.eowuu
AviraTR/Dropper.Gen
Antiy-AVLTrojan/Win32.AGeneric
KingsoftWin32.Troj.Undef.(kcloud)
MicrosoftVirTool:MSIL/Obfuscator.AZ
ArcabitTrojan.Generic.D27F7887
GDataTrojan.GenericKD.41908359
AhnLab-V3Trojan/Win32.Gen
McAfeePWSZbot-FAFY!62AA79C2AA1E
MAXmalware (ai score=100)
VBA32Trojan.Downloader
MalwarebytesGeneric.Malware/Suspicious
PandaTrj/CI.A
YandexTrojan.Agent!LB76tcb9+vE
IkarusTrojan.MSIL.Injector
MaxSecureTrojan.Malware.300983.susgen
FortinetMSIL/Injector.RF!tr
AVGMSIL:Crypt-HR [Trj]
Paloaltogeneric.ml

How to remove VirTool:MSIL/Obfuscator.AZ?

VirTool:MSIL/Obfuscator.AZ removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment