About “Malware.AI.1124585181” infection

The Malware.AI.1124585181 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.1124585181 virus can do?

Dynamic (imported) function loading detected
.NET file is packed/obfuscated with SmartAssembly
Authenticode signature is invalid
Anomalous .NET characteristics
CAPE detected the Mercurial malware family

How to determine Malware.AI.1124585181?


File Info:
name: 9D9ED0EB85405FBF95D6.mlw
path: /opt/CAPEv2/storage/binaries/49cea9b2581798941cd334c6a2f6c9b012ea8d308090a1a37c83e5a31873b0a4
crc32: BD3878CF
md5: 9d9ed0eb85405fbf95d69b4d17bfe088
sha1: c610a9fea9de26089cf5a131da5f425369806212
sha256: 49cea9b2581798941cd334c6a2f6c9b012ea8d308090a1a37c83e5a31873b0a4
sha512: c5e396f4472fcbb1c4ef335be98942f06a057d608f89b13ee8727537e48d64084017d76e85b04107d2129afae5d28b42673b974ef8ba97d5dea3438a774f7433
ssdeep: 3072:U/P8owYpoOHcC60wp/TeMuqNDHSrMT7fZlqVHTT77EqO:Mrwg7MZNGw73
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T129E37BA823DD9F51E3FF0779F0F262500736B9A0AB55E31E12484C9E1939BC5E1867A3
sha3_384: 5936da5a9a07fb88f3af66eeb436c9aeecef0b0faac6cbe347d1911308bcd80963fcb46bef66376bf91745d6d7ad96af
ep_bytes: ff253823410000005f436f724578654d
timestamp: 2022-01-07 13:56:36

Version Info:
Translation: 0x0000 0x04b0
FileDescription:  
FileVersion: 0.0.0.0
InternalName: output.exe
LegalCopyright:  
OriginalFilename: output.exe
ProductVersion: 0.0.0.0
Assembly Version: 0.0.0.0

Malware.AI.1124585181 also known as:

Lionic	Trojan.MSIL.Disco.i!c
Elastic	malicious (high confidence)
DrWeb	Trojan.DownLoader6.33781
FireEye	Generic.mg.9d9ed0eb85405fbf
McAfee	Artemis!9D9ED0EB8540
Cylance	Unsafe
K7AntiVirus	Password-Stealer ( 0057eea91 )
Alibaba	TrojanPSW:MSIL/Disco.4a883ed5
K7GW	Password-Stealer ( 0057eea91 )
CrowdStrike	win/malicious_confidence_90% (W)
BitDefenderTheta	Gen:NN.ZemsilF.34114.jm0@amA78Fk
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of MSIL/PSW.Agent.SKM
TrendMicro-HouseCall	TROJ_GEN.R002C0RAA22
ClamAV	Win.Packed.Bulz-9868353-0
Kaspersky	HEUR:Trojan-PSW.MSIL.Disco.gen
NANO-Antivirus	Trojan.Win32.Birfost.cxzxse
Avast	Win32:Trojan-gen
Tencent	Win32.Trojan.Generic.Hwws
Sophos	ML/PE-A + Troj/Disteal-R
TrendMicro	TROJ_GEN.R002C0RAA22
McAfee-GW-Edition	BehavesLike.Win32.BrowseFox.ch
SentinelOne	Static AI – Malicious PE
Ikarus	Trojan.SuspectCRC
GData	Win32.Trojan-Stealer.Cordimik.I8YUBF
Jiangmin	Trojan/Genome.cgyo
Avira	HEUR/AGEN.1126960
Gridinsoft	Ransom.Win32.Sabsik.sa
Microsoft	Trojan:Win32/Sabsik.FL.B!ml
Cynet	Malicious (score: 99)
VBA32	TrojanSpy.MSIL.KeyLogger
Malwarebytes	Malware.AI.1124585181
APEX	Malicious
Rising	Stealer.Mercurial!1.D7B6 (CLASSIC)
Fortinet	MSIL/Agent.SKM!tr.pws
AVG	Win32:Trojan-gen
Cybereason	malicious.ea9de2

How to remove Malware.AI.1124585181?

Malware.AI.1124585181 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X