Malware

Malware.AI.1066492530 removal

Malware Removal

The Malware.AI.1066492530 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.1066492530 virus can do?

  • Unconventionial binary language: Russian
  • Unconventionial language used in binary resources: Russian
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • Attempts to repeatedly call a single API many times in order to delay analysis time
  • CAPE detected the shellcode get eip malware family
  • Yara detections observed in process dumps, payloads or dropped files

How to determine Malware.AI.1066492530?



File Info:

name: 012A3C9AB1F26757E702.mlw
path: /opt/CAPEv2/storage/binaries/c2a4d430930ebbb4fb9d2caa27f58b1ec548b24dc4f918dd952007802319555d
crc32: EE7F0B03
md5: 012a3c9ab1f26757e70216f6657bdc90
sha1: abf2f338a2a1c46284a1af0a6d6a9f52adf84479
sha256: c2a4d430930ebbb4fb9d2caa27f58b1ec548b24dc4f918dd952007802319555d
sha512: f957d8a884c3e5983a6e12ea50daeaa4df97e94d30a8d9fe6b10a6a8bbd46d4fa33cf2ef45dbaa9410a71ed1695f9bf2ffc614079bfaa9352a6ff50a85b5ea26
ssdeep: 98304:9KKEPqPqyOTbXNCd0e1aaLLmjsDaAPm8gSmoj9ghi1RebMIg9Cbk/VRuH:9PuqSdPsmjsDadojDIg9Cbk/V0
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1E836CF317F8D7466D05202314E9DF278E26EBDF03BA501EB1964BE6EEA317810A1E717
sha3_384: 1eaab7a96da755336ce9c84614ce8e2b65c2d4da43c7e503c9fde72560699ebf724b691fe22acd2c0b193472a95d867e
ep_bytes: e8ce030000e97afeffff3b0d40e06f00
timestamp: 2017-03-06 00:12:39


Version Info:

CompanyName: TODO: 
FileDescription: git67
FileVersion: 1.0.0.1
InternalName: git67.exe
LegalCopyright: TODO: (c) .  Все права защищены.
OriginalFilename: git67.exe
ProductName: TODO: 
ProductVersion: 1.0.0.1
Translation: 0x0419 0x04b0

Malware.AI.1066492530 also known as:

BkavW32.Common.6029ECB7
Elasticmalicious (moderate confidence)
MicroWorld-eScanTrojan.GenericKD.71919587
FireEyeTrojan.GenericKD.71919587
SkyhighBehavesLike.Win32.Sality.rc
McAfeeArtemis!012A3C9AB1F2
Cylanceunsafe
SangforTrojan.Win32.Agent.V1na
K7AntiVirusTrojan ( 005b38101 )
AlibabaTrojan:Win32/Rhadamanthys.5e5f93b2
K7GWTrojan ( 005b38101 )
CrowdStrikewin/malicious_confidence_60% (W)
BitDefenderThetaGen:NN.ZexaF.36802.@x0@aSvAr6jc
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Generik.CBDEYBS
APEXMalicious
TrendMicro-HouseCallTrojan.Win32.PRIVATELOADER.YXECKZ
BitDefenderTrojan.GenericKD.71919587
AvastWin32:MalwareX-gen [Trj]
EmsisoftTrojan.GenericKD.71919587 (B)
F-SecureTrojan.TR/AVI.Rhadamanthys.lzqzw
TrendMicroTrojan.Win32.PRIVATELOADER.YXECKZ
Trapminemalicious.high.ml.score
SophosMal/Generic-S
ALYacTrojan.GenericKD.71919587
VaristW32/ABTrojan.RIAV-5283
AviraTR/AVI.Rhadamanthys.lzqzw
Antiy-AVLGrayWare/Win32.Wacapew
MicrosoftTrojan:Win32/Acll
ArcabitTrojan.Generic.D44967E3
ViRobotTrojan.Win.Z.Agent.4866048
GDataTrojan.GenericKD.71919587
CynetMalicious (score: 99)
AhnLab-V3Infostealer/Win.Rhadamanthys.R640567
VBA32Trojan.Khalesi
GoogleDetected
MAXmalware (ai score=85)
MalwarebytesMalware.AI.1066492530
PandaTrj/Chgt.AD
RisingTrojan.Generic@AI.94 (RDML:TPbGNdjRJfGU4wjHasYm1g)
IkarusTrojan.SuspectCRC
MaxSecureTrojan.Malware.236999294.susgen
FortinetW32/PossibleThreat
AVGWin32:MalwareX-gen [Trj]
DeepInstinctMALICIOUS
alibabacloudSuspicious

How to remove Malware.AI.1066492530?

Malware.AI.1066492530 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment