Malware.AI.1066035161 (file analysis)

The Malware.AI.1066035161 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.1066035161 virus can do?

Sample contains Overlay data
Authenticode signature is invalid
Anomalous binary characteristics

How to determine Malware.AI.1066035161?


File Info:
name: 26002031423A1790DAB2.mlw
path: /opt/CAPEv2/storage/binaries/d98c2ff76771f5176b00f2ef3564b009f5699dd001da4026849d738a6f3115ae
crc32: 2F9F66CD
md5: 26002031423a1790dab2523a31e88323
sha1: adb369ad00b3be0a1dfc8cfc8848cc58bfba1622
sha256: d98c2ff76771f5176b00f2ef3564b009f5699dd001da4026849d738a6f3115ae
sha512: 7c0a71cd615852ff20abf31ff8fd496fad5c6aecc94f6365f231f69e67ba5289930b76bfc7e37008a3057a0fa267318909759f4012d99f1443d14ad311df8d41
ssdeep: 1536:zl8QF/CobbI0mN+wrT9SfGvrlT4ghJgWOUVeKSnHA+s+b:RI0mN+w39SfGzlTphJgWOUrSnjZ
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T16E93A7177F11E06EE682C5F029A9C356782B2D7927A0FC4373826F2965701A778B271F
sha3_384: 2c57592c8adfc911777a9d746ffdc557dca0fbec95d8d5ecfb00da5a9621b57f1b02e3ce00b41eea11e1cdef531607f4
ep_bytes: 6858404000e8eeffffff000040000000
timestamp: 2011-12-26 05:20:30

Version Info:
0: [No Data]

Malware.AI.1066035161 also known as:

Bkav	W32.AIDetectMalware
Elastic	malicious (high confidence)
Skyhigh	BehavesLike.Win32.Generic.nm
Malwarebytes	Malware.AI.1066035161
Sangfor	Suspicious.Win32.Save.a
Baidu	Win32.Worm.Autorun.l
ESET-NOD32	Win32/AutoRun.VB.AQE
APEX	Malicious
TrendMicro-HouseCall	WORM_VOBFUS.SMAB
ClamAV	Win.Trojan.Changeup-6169544-0
NANO-Antivirus	Trojan.Win32.Vobfus.dwtlbd
Avast	Win32:VB-AALQ [Trj]
F-Secure	Trojan.TR/Kazy.502562
TrendMicro	WORM_VOBFUS.SMAB
Trapmine	malicious.moderate.ml.score
FireEye	Generic.mg.26002031423a1790
Sophos	ML/PE-A
Ikarus	Trojan.Win32.Diple
Google	Detected
Avira	TR/Kazy.502562
Varist	W32/Vobfus.RM.gen!Eldorado
Kingsoft	malware.kb.a.970
Microsoft	Worm:Win32/Vobfus.CF
Cynet	Malicious (score: 100)
Acronis	suspicious
Rising	Worm.Vobfus!8.10E (TFE:3:iTMuCKIkjtB)
Yandex	Trojan.VBGent.Gen.930
SentinelOne	Static AI – Suspicious PE
Fortinet	W32/Diple.EJQE!tr
AVG	Win32:VB-AALQ [Trj]

How to remove Malware.AI.1066035161?

Malware.AI.1066035161 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X