Malware

What is “Malware.AI.1090059587”?

Malware Removal

The Malware.AI.1090059587 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.1090059587 virus can do?

  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • Creates RWX memory
  • Dynamic (imported) function loading detected
  • Reads data out of its own binary image
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX
  • Authenticode signature is invalid

How to determine Malware.AI.1090059587?



File Info:

name: 774DEEFD03095D630EA3.mlw
path: /opt/CAPEv2/storage/binaries/4ce56e1294506e3a4a278e1528dbdb1d1cf0410684e23ed38c3f6f0e1cb2de39
crc32: 1FC81CE3
md5: 774deefd03095d630ea3a68933f09f19
sha1: bc498ceaa239dce9a7b82191f6c796c36b3ad5d6
sha256: 4ce56e1294506e3a4a278e1528dbdb1d1cf0410684e23ed38c3f6f0e1cb2de39
sha512: 237282d13fb2d201b89b0d86c32b62f25e895332a525feeb9a39b4b7c76c1cf61a2b3040641623aa4327db9593f32545e31440602f60716e0c3940035d12980e
ssdeep: 3072:bj1zKPuA89uI0zOrK8yu2xOUWOAPW+VaAXX:X5UuPmSK8yu22OAe+4AH
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1BAE30285D37A0E18C63E097AC54769774B75C8AD34775B3B3A6D924E3DBE1C00F02AA8
sha3_384: 8967d95fa72cbece0cca2f2515cc8a2377dc94a79559540b74cf19611aacfa4e4e2dc298f58ed3ca04103d5db17454ce
ep_bytes: 60be00a043008dbe0070fcffc787d024
timestamp: 1992-06-19 22:22:17


Version Info:

0: [No Data]

Malware.AI.1090059587 also known as:

LionicTrojan.Win32.Agent.b!c
MicroWorld-eScanTrojan.GenericKD.37917713
FireEyeTrojan.GenericKD.37917713
McAfeeGenericRXAA-AA!774DEEFD0309
CylanceUnsafe
SangforRiskware.Win32.Agent.ky
BitDefenderTrojan.GenericKD.37917713
VirITTrojan.Win32.Agent.ABGE
SymantecML.Attribute.HighConfidence
APEXMalicious
ClamAVWin.Trojan.Agent-798636
KasperskyUDS:DangerousObject.Multi.Generic
AlibabaTrojanDropper:Win32/Generic.cbbcd0ec
NANO-AntivirusTrojan.Win32.Agent.bziki
Ad-AwareTrojan.GenericKD.37917713
SophosMal/Generic-S
ComodoMalware@#3hqg95zky5s3z
DrWebTrojan.MulDrop2.10470
ZillyaDropper.Agent.Win32.116832
McAfee-GW-EditionGenericR-DZI!E75318A4554A
EmsisoftTrojan.GenericKD.37917713 (B)
IkarusTrojan-Dropper.Win32.Agent
JiangminTrojanDropper.Agent.aqtp
WebrootW32.Malware.Gen
MicrosoftTrojan:Win32/Wacatac.B!ml
GDataTrojan.GenericKD.37917713
AhnLab-V3Dropper/Win32.Agent.C149902
ALYacTrojan.GenericKD.37917713
MAXmalware (ai score=94)
VBA32TrojanDropper.Agent
MalwarebytesMalware.AI.1090059587
PandaTrj/GdSda.A
RisingTrojan.Win32.Generic.14F1E5E6 (C64:YzY0Om9KTpGOIitv)
YandexTrojan.DR.Agent2!l/bpPOXRYQg
FortinetW32/Agent.FZFH!tr
AVGWin32:Trojan-gen
AvastWin32:Trojan-gen

How to remove Malware.AI.1090059587?

Malware.AI.1090059587 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment