Multi-License Discount Quote

Change Region

English
Threat Database Trojans Trojan.MSIL.Agent.ASC

Trojan.MSIL.Agent.ASC

By CagedTech in Trojans

Threat Scorecard

Popularity Rank: 2,222
Threat Level: 80 % (High)
Infected Computers: 648
First Seen: October 24, 2022
Last Seen: June 8, 2026
OS(es) Affected: Windows

Analysis Report

General information

Family Name: Trojan.MSIL.Agent.ASC
Signature status: No Signature

Known Samples

MD5: 512fba0e45bdaff7751e98259b7fc60a
SHA1: 12a3c8467085c6d88cf0b8b2978ddb6de964ec23
SHA256: A89F0597DC16911AF7F6A65A7873C1B8550167D4F56BA21998DF6896A721F5CF
File Size: 22.02 KB, 22016 bytes
MD5: b1b1821e0c0602bc0b105ac1adec9ee5
SHA1: ecb99f5bda33984335b2104f15492e72bd46db56
SHA256: F0531D00E82BCFC5751B212F4E95758767F84980E35FD09338122974D62202C5
File Size: 23.04 KB, 23040 bytes
MD5: 8375f3c68fa79586de08ffb9911cf4cd
SHA1: b0311d1af17a98518dc5c21c0f5921114e6a5933
SHA256: AE7CF1B2C3DDAA272B55BD74642983AE80EC85CBEDD75E4AD00C4EE139E1E90D
File Size: 15.36 KB, 15360 bytes
MD5: 991ffadefc1da0f8880bfc37cae80701
SHA1: 0275792a4641da67f1684ae3bd623fad0588dcd9
SHA256: B83E59449D17A5A51181669BE0F227951EADF690AF37B567A39D3905E1E931C8
File Size: 57.34 KB, 57344 bytes
MD5: 061c00d5a89797def413c44de2d352d1
SHA1: bd68db8f43488a3ee19d13c5bc2508ba9113078f
SHA256: 172742ACA117A40A3C3C03D557372B49A12959053EAEFF3C2CA13A7AFCE6E878
File Size: 61.44 KB, 61440 bytes
Show More
MD5: 602667f226480679a4f66676dccb1754
SHA1: 31cd67fb5f26468eb0bd9fd15d48e45c66875bfe
SHA256: 571627356B6219D116805974345693B90EF5301917F9681FC4DAA34E2B781B53
File Size: 11.26 KB, 11264 bytes
MD5: e756ef8191a753b973ae15217cf17a1b
SHA1: 637fcdbc9ccd833827ef2a9284f71a0884d81739
SHA256: 1061A8B8F308AB59EB120823FEE57D20EE5A2DEDE1D5E7CFAFA104D17A8EFEE2
File Size: 24.06 KB, 24064 bytes
MD5: 9a73f73f2ab3ce39eb27f64d76153531
SHA1: 00bde344a7def67f0b06a61070daaad7cd181458
SHA256: 59349BD42733B478B402B4F9386583746BFF01960ADA6AF3F88E6E21C0E5279E
File Size: 71.68 KB, 71680 bytes
MD5: ca09108b5c119b226a86b97c6d62a893
SHA1: b87e3f2fdbcd9e00dba5321fc9cd367d92a95ce3
SHA256: 6E32B2D2A1DAA7394E824B2E0D13426095C0200F91C388DB7D0D48FFA7D458AF
File Size: 50.18 KB, 50176 bytes
MD5: cb1654f97f6f8ecb620ef25981d4528b
SHA1: 064c9bd804bf9802dfe2eb881d860de3d74cc632
SHA256: 44C102E5D468985C50D1BBC290DB22C9371EC0F7DCF726D0BF3B19390120DB04
File Size: 198.14 KB, 198144 bytes
MD5: cd913da9047bb2a2ea48d6a79f57e29d
SHA1: 13a6fd48b4d6d271b9de1b1407f50d10b7ba1218
SHA256: 6A919AD74C14870B1AB5888FA7A96C74ECC2AF1A1BBBB8E7E6E3F267D3B33D3D
File Size: 14.34 KB, 14336 bytes
MD5: 0ec80c2c82fda27d8cb43906920929be
SHA1: b31edf236e8e8ffa1ae34a73e7f7b0409cc6337c
SHA256: D85847904CFEA208EFD890FDE54F940F9186899B374F240394E4F6A0031937F8
File Size: 32.77 KB, 32768 bytes
MD5: 445ccab5cdb970bbce878bbb989c374f
SHA1: 6c5ceaacf8532b9dfc94a3c8ee946f25f0a47ebc
SHA256: A67ECDB70C3558435BBDC9B4CAD63DB4024255B3A95A8107E3A66876E16EE8C3
File Size: 391.17 KB, 391168 bytes
MD5: 98fed55c99ffb9592b673cea9f7ec3c3
SHA1: b121ac5f7074f12032f90916b073150d6ad7cd03
SHA256: CF66F2EE294862E127ACEA77F06712599F589B60D6AC547E773067D1A1C3958C
File Size: 8.19 KB, 8192 bytes
MD5: f2e71be559cea413a8f9f6bf54807f2d
SHA1: 624bdb2d85499dc07d7393afa06e970ab276983c
SHA256: 2B7C8F9CD42769061A91E0A16C750486A38CAD5D926F23650CD6BF7ACD085D1A
File Size: 7.68 KB, 7680 bytes
MD5: 5bd59098abda414376b52bcef5c28224
SHA1: a5e5ce560fe952d7cc65cba4c949891527d5be9d
SHA256: 8D5650A4EC64CAFA70117E1FE3F200695ACEF11C8F1531779C06CDAC14123D54
File Size: 32.77 KB, 32768 bytes
MD5: 1f7eb6d4d586be7b1b5ec44243b439fb
SHA1: 91dcab02a92a64b411a06e7d2696dc8ee8d63e2f
SHA256: B84E67877AD1B8A250ABCB50AE18BA98F0719EAB639B3EE034F94A5E1F874D61
File Size: 305.66 KB, 305664 bytes
MD5: 161dc4f7cf08d1ba96a65f9f7dd7d7ed
SHA1: 050d8e52c950680e0fcf106dbea1104f29187154
SHA256: 81614E805052B79325067A42A1B8E942C80250A196C5EC76A66BD620CCBA814B
File Size: 32.77 KB, 32768 bytes
MD5: 84e265febad37591ff5882b0a626e827
SHA1: 325153643905cdcf08dd2261316396a0ea375cda
SHA256: 98D8866857C555557B1046361D9998BCB6577A91DB7F4CD5960E2E0609E45061
File Size: 32.77 KB, 32768 bytes
MD5: e67f8bbed23ce3decf44644793fe0fdc
SHA1: 2cf25509f747a2900e3e1fe06b2592d0fffe3038
SHA256: 29CAB1A4DCD48D107AF8D7C5E5EE25CB7492AF7D4AF31A70E6D736F85A47B66D
File Size: 14.34 KB, 14336 bytes
MD5: 3c2205717ab0e6abbb4e919a2a6c07ca
SHA1: e3f2c55e3e7b09b90366ea62f2e04b4ef7667f8e
SHA256: DB92FF36BD8F230422E9EA768139E72244812FA09F480A897F98F09825EC79B1
File Size: 7.68 KB, 7680 bytes
MD5: c2a1157f627c0b709b3c73e13e3300ec
SHA1: 8f213e6f9e93bf9788342bfb1ef9e02156510553
SHA256: 5CA75724BEF33E9035EC611461F33F7EA597390B7EFCACA5B79AA92958BE70A6
File Size: 7.68 KB, 7680 bytes
MD5: c930e7a2f7805c75b7f3527180ff10cc
SHA1: 675bb0ed91429e1d376d80b7cea8568c7f9a74f6
SHA256: 4AC49EA3EA6276DA03F7325FC99673469C29C71E4911619E3022989FA43CEE3B
File Size: 14.34 KB, 14336 bytes
MD5: e98dc4ce683d9ce49bb35b87970f496e
SHA1: 363f132bebc682ebe27fcac8b2838bc264a3d714
SHA256: CA6785BAD5B1CA7605F1901D17296589751FD473D9A3961E8AE89A06C7F88249
File Size: 14.85 KB, 14848 bytes
MD5: fec881b7e8150e9aaee96787a94cea39
SHA1: 40332e09fa151647294ed6fdfbc3b39b62fe2ccd
SHA256: 5B752B357A05F38E22F2A68B2F81679D3D4F53D706895FDAB6FFFEF6EDC23DC4
File Size: 14.34 KB, 14336 bytes
MD5: c14152b1ced6bf04dac7149fd80307eb
SHA1: 7a50e827d709ce4a6986e2c1285ad1feb435d4a1
SHA256: 9A4479DDFE6E87AB909A20A40FD7E9851EE70BB13DBE704C53563495FE067153
File Size: 14.34 KB, 14336 bytes
MD5: c129a244a60a53381307bcbad1f50c69
SHA1: d2cdd31cbe05d99c87b446cf21d16704b5276da8
SHA256: 3280DF5F635AB738A442426589A7D1390A515211BC92BE86382995A34967BB42
File Size: 7.68 KB, 7680 bytes
MD5: ab2383a61fc1e85f37af1b4cc3c6cfb5
SHA1: b005fa2e85b966194017205d94ac0baf7bbb1dc2
SHA256: 5FBEA952EC83E04454346A5F716E11090583C33234E1AEFC8B69333C05CD44FC
File Size: 32.77 KB, 32768 bytes
MD5: e9ebbb90478196c94add175b9b110b2e
SHA1: 37890b7507054b0240ecea5500c899a0c7028d5f
SHA256: AC7E27CF687DF4186946EF58A9B6B725D31685F17C5916814E711D13EB497E56
File Size: 14.34 KB, 14336 bytes
MD5: 1ec67be8ca8cd17f5d9d1271541d2803
SHA1: 514aeb80e2a5a1230c862b3aa449e1f452a10dac
SHA256: C81C4F9C3ABA46047415A8ABA61D8A0B5B299992430F246B684BFEB588F7A31A
File Size: 14.34 KB, 14336 bytes
MD5: c749c9c9563224d5d5369ca4582d67ab
SHA1: a5f87dcba5c7dcf8f5389858ce96b257a57194ea
SHA256: B924D96CAB7BBC653FA0DF77460D3AA866CEC52F758223D2CE18FDB473A8E6BC
File Size: 6.14 KB, 6144 bytes
MD5: eb98d712bf14b144bcb338025553633b
SHA1: e7be2abc698d806c00a705cfe4fa4743a9747f56
SHA256: 4EE28D4CB3E50B135865CFDE4039B82A46D6195782966BBFFB1F3F76759AC046
File Size: 32.77 KB, 32768 bytes
MD5: 74d22e4c39736dfccc7327dc2e35a847
SHA1: 119abfdb1e1cbadf068c844f42286cceccb6c978
SHA256: 4916384D5989CAD8CD2CE6749BC23A59E91D93CB83093DE519A2025E9E4C573A
File Size: 312.32 KB, 312320 bytes
MD5: e0355cddedb9e5bf67ddc64c5f516ef5
SHA1: 361bd006a958a645d9b093f8fe87be98d0d480b3
SHA256: 025C04396C04A054826EA81745415A6582DE646BDE14614C4F16882D5C272495
File Size: 14.34 KB, 14336 bytes
MD5: c1f4f503d82ab923192d287f2a6132bf
SHA1: 666bf79014a04cef9058e2a4d49bc83fc9b5d160
SHA256: F9B1CD216E6850CC8BBF6BE027949A7F8F01DFA6DCD18ED0E65ACC26AA151D44
File Size: 14.34 KB, 14336 bytes

Windows Portable Executable Attributes

  • File doesn't have "Rich" header
  • File doesn't have exports table
  • File doesn't have security information
  • File is .NET application
  • File is 32-bit executable
  • File is console application (IMAGE_SUBSYSTEM_WINDOWS_CUI)
  • File is either console or GUI application
  • File is not packed
  • IMAGE_FILE_DLL is not set inside PE header (Executable)
  • IMAGE_FILE_EXECUTABLE_IMAGE is set inside PE header (Executable Image)

Windows PE Version Information

Name Value
Assembly Version 0.0.0.0
File Version 0.0.0.0
Internal Name
  • App_Web_0lcrcfbx.dll
  • App_Web_0lxii23n.dll
  • App_Web_2kapviqx.dll
  • App_Web_2nfkrp2j.dll
  • App_Web_d5t0ypaf.dll
  • App_Web_dhouzq2f.dll
  • App_Web_hp1o1at5.dll
  • App_Web_hwnj4h2g.dll
  • App_Web_icxntm5z.dll
  • App_Web_nlmuq0av.dll
Show More
  • App_Web_o1zn2u5u.dll
  • App_Web_p4scxm01.dll
  • App_Web_uickoaru.dll
  • App_Web_xrw0tt2a.dll
  • App_Web_ydwbq21n.dll
  • App_Web_ypbmi4mh.dll
Original Filename
  • App_Web_0lcrcfbx.dll
  • App_Web_0lxii23n.dll
  • App_Web_2kapviqx.dll
  • App_Web_2nfkrp2j.dll
  • App_Web_d5t0ypaf.dll
  • App_Web_dhouzq2f.dll
  • App_Web_hp1o1at5.dll
  • App_Web_hwnj4h2g.dll
  • App_Web_icxntm5z.dll
  • App_Web_nlmuq0av.dll
Show More
  • App_Web_o1zn2u5u.dll
  • App_Web_p4scxm01.dll
  • App_Web_uickoaru.dll
  • App_Web_xrw0tt2a.dll
  • App_Web_ydwbq21n.dll
  • App_Web_ypbmi4mh.dll
Product Version 0.0.0.0

File Traits

  • .NET
  • dll
  • x86

Block Information

Total Blocks: 20
Potentially Malicious Blocks: 12
Whitelisted Blocks: 6
Unknown Blocks: 2

Visual Map

x 0 0 0 x x x x x x x ? x x ? x x 0 0 0
0 - Probable Safe Block
? - Unknown Block
x - Potentially Malicious Block

Similar Families

  • MSIL.Agent.SFC
  • MSIL.Webshell.AA
  • MSIL.Webshell.BAE
  • MSIL.Webshell.BD
  • MSIL.Webshell.BT
Show More
  • MSIL.Webshell.BV
  • MSIL.Webshell.CD

Windows API Usage

Category API
Syscall Use
  • ntdll.dll!NtAccessCheck
  • ntdll.dll!NtAlertThreadByThreadId
  • ntdll.dll!NtAlpcSendWaitReceivePort
  • ntdll.dll!NtApphelpCacheControl
  • ntdll.dll!NtClose
  • ntdll.dll!NtConnectPort
  • ntdll.dll!NtCreateMutant
  • ntdll.dll!NtCreateSection
  • ntdll.dll!NtDuplicateToken
  • ntdll.dll!NtFreeVirtualMemory
Show More
  • ntdll.dll!NtMapViewOfSection
  • ntdll.dll!NtOpenFile
  • ntdll.dll!NtOpenKey
  • ntdll.dll!NtOpenKeyEx
  • ntdll.dll!NtOpenProcessToken
  • ntdll.dll!NtOpenProcessTokenEx
  • ntdll.dll!NtOpenSection
  • ntdll.dll!NtOpenSemaphore
  • ntdll.dll!NtOpenThreadTokenEx
  • ntdll.dll!NtProtectVirtualMemory
  • ntdll.dll!NtQueryAttributesFile
  • ntdll.dll!NtQueryDebugFilterState
  • ntdll.dll!NtQueryInformationProcess
  • ntdll.dll!NtQueryInformationThread
  • ntdll.dll!NtQueryInformationToken
  • ntdll.dll!NtQueryKey
  • ntdll.dll!NtQueryPerformanceCounter
  • ntdll.dll!NtQuerySecurityAttributesToken
  • ntdll.dll!NtQueryValueKey
  • ntdll.dll!NtQueryVirtualMemory
  • ntdll.dll!NtQueryVolumeInformationFile
  • ntdll.dll!NtQueryWnfStateData
  • ntdll.dll!NtReleaseMutant
  • ntdll.dll!NtReleaseSemaphore
  • ntdll.dll!NtReleaseWorkerFactoryWorker
  • ntdll.dll!NtRequestWaitReplyPort
  • ntdll.dll!NtSetEvent
  • ntdll.dll!NtSetInformationProcess
  • ntdll.dll!NtSetInformationVirtualMemory
  • ntdll.dll!NtSetInformationWorkerFactory
  • ntdll.dll!NtSubscribeWnfStateChange
  • ntdll.dll!NtTestAlert
  • ntdll.dll!NtTraceControl
  • ntdll.dll!NtUnmapViewOfSection
  • ntdll.dll!NtUnmapViewOfSectionEx
  • ntdll.dll!NtWaitForAlertByThreadId
  • ntdll.dll!NtWaitForSingleObject
  • ntdll.dll!NtWaitLowEventPair
  • ntdll.dll!NtWriteFile
  • ntdll.dll!NtWriteVirtualMemory
  • UNKNOWN
  • win32u.dll!NtGdiBitBlt
  • win32u.dll!NtGdiCreateBitmap
  • win32u.dll!NtGdiCreateCompatibleDC
  • win32u.dll!NtGdiCreateDIBitmapInternal
  • win32u.dll!NtGdiCreateSolidBrush
  • win32u.dll!NtGdiDeleteObjectApp
  • win32u.dll!NtGdiExtGetObjectW
  • win32u.dll!NtGdiGetDCforBitmap
  • win32u.dll!NtGdiGetDCObject
  • win32u.dll!NtGdiGetDeviceCaps
  • win32u.dll!NtGdiRestoreDC
  • win32u.dll!NtGdiSaveDC
  • win32u.dll!NtGdiSelectBitmap
  • win32u.dll!NtGdiSetDIBitsToDeviceInternal
  • win32u.dll!NtUserBuildHwndList
  • win32u.dll!NtUserCallTwoParam
  • win32u.dll!NtUserCreateEmptyCursorObject
  • win32u.dll!NtUserCreateWindowEx
  • win32u.dll!NtUserDestroyWindow
  • win32u.dll!NtUserFindExistingCursorIcon
  • win32u.dll!NtUserGetAncestor
  • win32u.dll!NtUserGetClassInfoEx
  • win32u.dll!NtUserGetClassName
  • win32u.dll!NtUserGetDC
  • win32u.dll!NtUserGetGUIThreadInfo
  • win32u.dll!NtUserGetIconInfo
  • win32u.dll!NtUserGetIconSize
  • win32u.dll!NtUserGetImeInfoEx
  • win32u.dll!NtUserGetKeyboardLayout
  • win32u.dll!NtUserGetObjectInformation
  • win32u.dll!NtUserGetProcessWindowStation
  • win32u.dll!NtUserGetProp
  • win32u.dll!NtUserGetThreadDesktop
  • win32u.dll!NtUserGetThreadState
  • win32u.dll!NtUserGetWindowCompositionAttribute
  • win32u.dll!NtUserIsNonClientDpiScalingEnabled
  • win32u.dll!NtUserIsTopLevelWindow
  • win32u.dll!NtUserMessageCall
  • win32u.dll!NtUserRegisterClassExWOW
  • win32u.dll!NtUserRegisterWindowMessage
  • win32u.dll!NtUserReleaseDC
  • win32u.dll!NtUserRemoveProp
  • win32u.dll!NtUserSelectPalette
  • win32u.dll!NtUserSetCursorIconData
  • win32u.dll!NtUserSetWindowFNID
  • win32u.dll!NtUserSetWindowLongPtr
  • win32u.dll!NtUserSetWindowPos
  • win32u.dll!NtUserUpdateInputContext

Trending

Most Viewed

Loading...