Malware.AI.1179085467 (file analysis)

The Malware.AI.1179085467 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.1179085467 virus can do?

The binary likely contains encrypted or compressed data.
The executable is compressed using UPX
Network activity detected but not expressed in API logs

How to determine Malware.AI.1179085467?


File Info:
crc32: 1E38F62D
md5: 66d64308c259c190300691a147611d84
name: 66D64308C259C190300691A147611D84.mlw
sha1: f5c8f78e2f357130d1bc209a74859fc242dfb26a
sha256: 1e3b3f982532b32892bf40430bb97fdd884ccd882365583a0637feb99fce64e6
sha512: 54881c3ec78fd6f6994873f96b67bf385a730b4cfcdba7e905920d7c1376021b7a6ee3515bfa4c950361df4cbbbef7c515b6c03527e50ffec5e6543e244b8ccb
ssdeep: 12288:FozGdX0M4ornOmZIzfMwHHQmRROXK8RNDg42jKGzd+QhZrYs4tvF5ppRF9X0ELw:F4GHnhIzOa2m+alYztvFn/F9qif
type: PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed

Version Info:
Translation: 0x0809 0x04b0

Malware.AI.1179085467 also known as:

Bkav	W32.AIDetect.malware1
K7AntiVirus	Trojan ( 005057c11 )
Lionic	Trojan.Win32.Autoit.4!c
Cynet	Malicious (score: 99)
ALYac	AIT:Trojan.Nymeria.632
Cylance	Unsafe
CrowdStrike	win/malicious_confidence_60% (D)
Alibaba	TrojanDropper:Win32/INFOSTEAL.c050f60c
K7GW	Trojan ( 005057c11 )
Cybereason	malicious.8c259c
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	multiple detections
APEX	Malicious
Avast	Script:SNH-gen [Trj]
ClamAV	Win.Malware.Autoit-6941066-0
Kaspersky	Trojan-Dropper.Win32.Autoit.abceqi
BitDefender	AIT:Trojan.Nymeria.632
NANO-Antivirus	Trojan.Win32.Autoit.fichky
MicroWorld-eScan	AIT:Trojan.Nymeria.632
Tencent	Win32.Trojan-dropper.Autoit.Wqxa
Ad-Aware	AIT:Trojan.Nymeria.632
Sophos	Mal/Generic-S
BitDefenderTheta	AI:Packer.A9865FB116
TrendMicro	TSPY_INFOSTEAL.SM
McAfee-GW-Edition	BehavesLike.Win32.TrojanAitInject.bc
FireEye	Generic.mg.66d64308c259c190
Emsisoft	AIT:Trojan.Nymeria.632 (B)
Avira	HEUR/AGEN.1102700
Antiy-AVL	Trojan/Generic.ASCommon.168
Microsoft	Trojan:Win32/Occamy.C
GData	AIT:Trojan.Nymeria.632 (3x)
McAfee	Artemis!66D64308C259
MAX	malware (ai score=100)
Malwarebytes	Malware.AI.1179085467
Panda	Trj/CI.A
TrendMicro-HouseCall	TSPY_INFOSTEAL.SM
Rising	Trojan.Obfus/Autoit!1.BEDE (CLASSIC)
Ikarus	Trojan.Win32.Autoit
Fortinet	AutoIt/Agent.BQ!tr
AVG	Script:SNH-gen [Trj]

How to remove Malware.AI.1179085467?

Malware.AI.1179085467 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X