About “Malware.AI.1010281155” infection

The Malware.AI.1010281155 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.1010281155 virus can do?

Sample contains Overlay data
The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid
Anomalous binary characteristics

How to determine Malware.AI.1010281155?


File Info:
name: 6B349C3F527D61CA595D.mlw
path: /opt/CAPEv2/storage/binaries/992a4261f7adc1bec49d6b6c0d27c78be8080c6d80e08bba6b9b474906458253
crc32: 92241298
md5: 6b349c3f527d61ca595d822350ac90a5
sha1: 3271f7411e36dcede99de849fdb5d3c869d5b20e
sha256: 992a4261f7adc1bec49d6b6c0d27c78be8080c6d80e08bba6b9b474906458253
sha512: 5b81b0e19a6df146f3d65ca558c92d2a47f5a663c47b47ada54476bbcbe5877acbecabcccd76da661e363e82ef228077252339b76bf83d0f93f604a887f7def0
ssdeep: 6144:xfqu0xZ7p0fw4fyxcf6A8sQUV59Xj67548dBlPjobjB08QUV59XjocMPGEWaOSJK:xf70Dafw4KxYwl1ExqjSppywNUo
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T17DF4AF21FBD5C0B3F61121B11CAEAB975938E6985B288FC36BD42F69D8311D0BD3A345
sha3_384: deb83efa06a7a6907288a5e8c60a42d7177258d1255f9bf6819eb267282214427a5a965315d7eeeb330e3f1e6bb3cedc
ep_bytes: 6a6068700c4600e873020000bf940000
timestamp: 2008-03-13 07:54:24

Version Info:
0: [No Data]

Malware.AI.1010281155 also known as:

Bkav	W32.AIDetectMalware
DrWeb	Trojan.AdSubscribe.348
MicroWorld-eScan	Gen:Variant.Mikey.151595
Skyhigh	BehavesLike.Win32.Generic.bt
McAfee	GenericRXBN-BV!6B349C3F527D
Malwarebytes	Malware.AI.1010281155
Sangfor	Suspicious.Win32.Save.ins
CrowdStrike	win/malicious_confidence_70% (D)
Arcabit	Trojan.Mikey.D2502B
BitDefenderTheta	Gen:NN.ZexaF.36792.TmY@aiVXfsh
VirIT	Trojan.Win32.X-PolyCrypt.CR
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (high confidence)
Cynet	Malicious (score: 100)
APEX	Malicious
BitDefender	Gen:Variant.Mikey.151595
NANO-Antivirus	Trojan.Win32.AdSubscribe.cjelcj
Avast	Win32:Adware-gen [Adw]
Emsisoft	Gen:Variant.Mikey.151595 (B)
F-Secure	Trojan.TR/Patched.Ren.Gen
VIPRE	Gen:Variant.Mikey.151595
FireEye	Generic.mg.6b349c3f527d61ca
Sophos	Generic ML PUA (PUA)
Jiangmin	Adware/AdSubscribe.de
Avira	TR/Patched.Ren.Gen
Antiy-AVL	GrayWare[AdWare]/Win32.AdSubscribe
Kingsoft	malware.kb.a.995
Microsoft	Trojan:Win32/Wacatac.B!ml
GData	Gen:Variant.Mikey.151595
ALYac	Gen:Variant.Mikey.151595
MAX	malware (ai score=86)
Cylance	unsafe
Rising	Trojan.Generic@AI.100 (RDML:DvUerh0eVhHtsAdxsMDnSw)
SentinelOne	Static AI – Malicious PE
MaxSecure	Trojan.Malware.300983.susgen
AVG	Win32:Adware-gen [Adw]
Cybereason	malicious.11e36d
DeepInstinct	MALICIOUS

How to remove Malware.AI.1010281155?

Malware.AI.1010281155 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X