Malware.AI.1087159579 (file analysis)

The Malware.AI.1087159579 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.1087159579 virus can do?

The binary contains an unknown PE section name indicative of packing
The binary likely contains encrypted or compressed data.
Authenticode signature is invalid
Anomalous binary characteristics

How to determine Malware.AI.1087159579?


File Info:
name: 0B1C78AFCFC894AEF881.mlw
path: /opt/CAPEv2/storage/binaries/09da685f3372d5602d8e5c652b78fc97aa853b1e759fc3bc90852edcba8fffa2
crc32: 8104D10A
md5: 0b1c78afcfc894aef881c1c4ae6f76b5
sha1: 3249b995d1a43a108f73e488fa29912eef11bccf
sha256: 09da685f3372d5602d8e5c652b78fc97aa853b1e759fc3bc90852edcba8fffa2
sha512: 9c29936e931af34d5d119f1822f08eb8bd9eada46cea885e307c8cc422cc4f23228efd5180e848811c5dfc94352e7d3d27c63767c6f3e0c42618008481a94c38
ssdeep: 12288:GdvgPs+bAVqlChXMsaC8QyQVqplVH81x3Nk5RYQ572yZe+:SYSVqlSl8Qye8lVcT3GnXA
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1AEB423EA16391D23DA4E05BE8D042278DB6D037624612FB0D8F49E363923DD5498EDFB
sha3_384: c837f1ec48003e142c89f263c74ae83db5ab3671291560fa7756c51a065cc25e8f9519afdf94950ed922ce3a4b4f5d29
ep_bytes: eb0668b0180000c39c60e80200000033
timestamp: 2008-09-19 01:27:28

Version Info:
0: [No Data]

Malware.AI.1087159579 also known as:

Bkav	W32.AIDetectMalware
Lionic	Trojan.Win32.Generic.lrGq
FireEye	Generic.mg.0b1c78afcfc894ae
Malwarebytes	Malware.AI.1087159579
CrowdStrike	win/malicious_confidence_60% (W)
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (moderate confidence)
APEX	Malicious
Cynet	Malicious (score: 100)
McAfee-GW-Edition	BehavesLike.Win32.Mytob.gc
Trapmine	suspicious.low.ml.score
Sophos	Generic ML PUA (PUA)
Antiy-AVL	Trojan/Win32.Zpevdo
Microsoft	Trojan:Win32/Zpevdo.A
McAfee	Artemis!0B1C78AFCFC8
VBA32	BScope.Trojan.Wacatac
Cylance	unsafe
Zoner	Probably Heur.ExeHeaderP
TrendMicro-HouseCall	TROJ_GEN.R002H06EM23
Rising	Trojan.Zpevdo!8.F912 (CLOUD)
Yandex	Packed/Pec1
SentinelOne	Static AI – Suspicious PE
MaxSecure	Trojan.Malware.300983.susgen
BitDefenderTheta	Gen:NN.ZexaE.36318.EqWfaiqB1@li
DeepInstinct	MALICIOUS

How to remove Malware.AI.1087159579?

Malware.AI.1087159579 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X