How to remove “Malware.AI.1146713581”?

The Malware.AI.1146713581 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.1146713581 virus can do?

Dynamic (imported) function loading detected
CAPE extracted potentially suspicious content
The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid

How to determine Malware.AI.1146713581?


File Info:
name: 92ABC93E566B43204743.mlw
path: /opt/CAPEv2/storage/binaries/a061c1fd4eed5ef3dd3f2d577ad9be5fefc9257b8dba32a9f9215dbd741a6360
crc32: 0669B379
md5: 92abc93e566b43204743fe88e5e50267
sha1: e726db975f1a9ed5de73f8c25da154cdfbe14a1f
sha256: a061c1fd4eed5ef3dd3f2d577ad9be5fefc9257b8dba32a9f9215dbd741a6360
sha512: f36f5064792a08f90f35e10df5e3b5850e9c61c5537460eb8a7b4384c68746a57c3b84530a5cc623f354b22d9bc0bd3c3f90eb1bfeccac95f95d67659911ccdd
ssdeep: 49152:EJc3oPr4Ntcc5FhhP5l5/jYK9w+Nsc5FhhP:EKY4cc5FnPvR9tqc5FnP
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T11BE5C01839E6F8D0D56C59B10D62E0085AA1BE4316B1CEB6FE5D7B1A3FF7B805E052C2
sha3_384: 38276ddb9db1ee208c1f790fc336263a654acb495360adea6c1b9a1c2b607dd2e53ac3b26e811edd7b85db9091628e9f
ep_bytes: ff250020400000000000000000000000
timestamp: 2016-01-29 17:25:28

Version Info:
Translation: 0x0000 0x04b0
FileDescription: Minecraft Story Mode
FileVersion: 1.0.2.0
InternalName: Minecraft Story Mode InstallShield.exe
LegalCopyright:  
OriginalFilename: Minecraft Story Mode InstallShield.exe
ProductName: Minecraft Story Mode
ProductVersion: 1.0.2.0
Assembly Version: 1.0.2.0

Malware.AI.1146713581 also known as:

Lionic	Trojan.Win32.Surveyer.4!c
MicroWorld-eScan	Gen:Variant.Bulz.501416
FireEye	Gen:Variant.Bulz.501416
ALYac	Gen:Variant.Bulz.501416
Cylance	Unsafe
Sangfor	Trojan.MSIL.Surveyer.EZ
K7AntiVirus	Trojan ( 0050e2391 )
Alibaba	Trojan:MSIL/Surveyer.7a484b26
K7GW	Trojan ( 0050e2391 )
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of MSIL/Surveyer.EZ
APEX	Malicious
ClamAV	Win.Packed.Surveyer-6873462-0
BitDefender	Gen:Variant.Bulz.501416
NANO-Antivirus	Trojan.Win32.Surveyer.iwehjo
ViRobot	Trojan.Win32.Z.Surveyer.3070464
Ad-Aware	Gen:Variant.Bulz.501416
Sophos	Generic PUA OH (PUA)
DrWeb	Trojan.Surveyer.189
VIPRE	Trojan.Win32.Generic!BT
McAfee-GW-Edition	Artemis!Trojan
Emsisoft	Gen:Variant.Bulz.501416 (B)
SentinelOne	Static AI – Suspicious PE
GData	Gen:Variant.Bulz.501416
Avira	HEUR/AGEN.1109681
Microsoft	Trojan:Win32/Wacatac.B!ml
Cynet	Malicious (score: 99)
McAfee	Artemis!92ABC93E566B
MAX	malware (ai score=82)
VBA32	TScope.Trojan.MSIL
Malwarebytes	Malware.AI.1146713581
TrendMicro-HouseCall	TROJ_GEN.R002H0AF221
Ikarus	Trojan.MSIL.Surveyer
MaxSecure	Trojan.Malware.118698822.susgen
Fortinet	MSIL/Surveyer.EZ!tr
BitDefenderTheta	Gen:NN.ZemsilF.34084.7s0@aO9EKCp

How to remove Malware.AI.1146713581?

Malware.AI.1146713581 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X