Malware.AI.1186638228 (file analysis)

The Malware.AI.1186638228 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.1186638228 virus can do?

Presents an Authenticode digital signature
The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid
Anomalous binary characteristics

How to determine Malware.AI.1186638228?


File Info:
name: FE88DEFD578F26A705C8.mlw
path: /opt/CAPEv2/storage/binaries/902c3e9a1fe896b5921daf3738e979759b9857fe24d5740577ea8f3c9f6dee23
crc32: 5851E2D2
md5: fe88defd578f26a705c854a10589e27b
sha1: be0eba6d38814ffe5d9310f1871610581c3f0a01
sha256: 902c3e9a1fe896b5921daf3738e979759b9857fe24d5740577ea8f3c9f6dee23
sha512: 8b4fce7f22420475ea3d7ec107a2052a7d9dc99888673553997e4444b963959ddf16fb9bbe687af85431df2c129e9d1ad5ef80bef22ee739cfd7e5a45e61ecf2
ssdeep: 24576:T96H0toJdXN0BN2qnw4a+edxoBrLdggPQfPc+lPYbw/rWSI8LUlFl5Fp+:UHWoJdXN0BMOwLloBrugofPFqcY/+
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1EAC517127961D875D4728A704915EB9C5636BE20E9338E4B72C13ECEFFF16C28D26632
sha3_384: 5b8478ebaceaee9f6e26af1cbde76c87fba7cb82717b80b2aa2735f8b78f7052fdedf49140d7d2bb5b3c5c4731027364
ep_bytes: 6a2868b0170030e88103000033ff57ff
timestamp: 2007-03-13 22:21:26

Version Info:
CompanyName: Microsoft Corporation
FileDescription: Watson Subscriber for SENS Network Notifications
FileVersion: 11.0.8160
InternalName: dwtrig20.exe
LegalCopyright: Copyright © 2002-2003 Microsoft Corporation.  All rights reserved.
LegalTrademarks1: Microsoft® is a registered trademark of Microsoft Corporation.
LegalTrademarks2: Windows® is a registered trademark of Microsoft Corporation.
OriginalFilename: dwtrig20.exe
ProductName: Watson Subscriber for SENS Network Notifications
ProductVersion: 11.0.8160
Translation: 0x0000 0x04e4

Malware.AI.1186638228 also known as:

Bkav	W32.AIDetect.malware1
Elastic	malicious (high confidence)
Cylance	Unsafe
CrowdStrike	win/malicious_confidence_90% (W)
Cyren	W32/Ursu.DK.gen!Eldorado
Symantec	ML.Attribute.HighConfidence
Avast	FileRepMalware
ClamAV	Win.Malware.Filerepmalware-9859683-0
McAfee-GW-Edition	BehavesLike.Win32.Generic.vm
Sophos	ML/PE-A
GData	Win32.Trojan.PSE.136NMWS
Jiangmin	Packed.Krap.gvyp
Microsoft	Trojan:Win32/Sabsik.FL.B!ml
Cynet	Malicious (score: 100)
McAfee	Artemis!FE88DEFD578F
Malwarebytes	Malware.AI.1186638228
APEX	Malicious
SentinelOne	Static AI – Malicious PE
MaxSecure	Trojan.Malware.121218.susgen
Fortinet	W32/SuspectCRC.0B1D!tr
AVG	FileRepMalware

How to remove Malware.AI.1186638228?

Malware.AI.1186638228 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X