Malware

What is “Malware.AI.1194154476”?

Malware Removal

The Malware.AI.1194154476 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
6-day free trial available.

What Malware.AI.1194154476 virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Sample contains Overlay data
  • Authenticode signature is invalid
  • Anomalous binary characteristics

How to determine Malware.AI.1194154476?


File Info:

name: 789BE5860320CBB60790.mlw
path: /opt/CAPEv2/storage/binaries/198f94140a6daf79711c1ad00de4da84b5cc0bf37450017cbde2d200919f4bb0
crc32: 764D7B2D
md5: 789be5860320cbb60790363c408d2139
sha1: 1a39517c6a5e3629b54aeecef0343219424b37fc
sha256: 198f94140a6daf79711c1ad00de4da84b5cc0bf37450017cbde2d200919f4bb0
sha512: 47479fecac924cc6f9d52eb24ce9d77c0347f3d0fa9fd622504572978a6e86d61b103ab08c134f61d943f7bebd314dd1478080c7aba4789f330e9fa5aa98348b
ssdeep: 12288:U2XEaNXWvTMs1eVHyD8dCxSQKHY+0Bf+S:KahCosMhtCxSQK49Bf+S
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1C6E48D0767E4E946E89AC9F027CB42E11AD8A9393570FB9377D36721BE30580D436E27
sha3_384: 2cacc7b23722d06cdfefc781342f9af1e6fabe6ae227c4671747a5d4efbee9199b628f2e647aebd1f6a2da4868341938
ep_bytes: 68a0524000e8eeffffff000000000000
timestamp: 2010-02-26 09:53:54

Version Info:

Translation: 0x0409 0x04b0
Comments: KelbGBCA
CompanyName: vEcQAC
FileDescription: QGQQSfvK
LegalCopyright: cDYCbsStEyQ
LegalTrademarks: rxEVwvLBE
ProductName: UxdbIxR
FileVersion: 5.24.0064
ProductVersion: 5.24.0064
InternalName: GEkjfvhJSUfdkvthwsd
OriginalFilename: GEkjfvhJSUfdkvthwsd.exe

Malware.AI.1194154476 also known as:

BkavW32.AIDetect.malware2
LionicHeuristic.File.Generic.00×1!p
MicroWorld-eScanTrojan.Crypt.Gen.1
CAT-QuickHealTrojan.VB.XR4
ALYacTrojan.Crypt.Gen.1
CylanceUnsafe
ZillyaTrojan.Buzus.Win32.38603
SangforSuspicious.Win32.Save.vb
K7AntiVirusTrojan ( 0055e3991 )
AlibabaTrojanPSW:Win32/Buzus.8af74c16
K7GWTrojan ( 0055e3991 )
Cybereasonmalicious.60320c
BitDefenderThetaAI:Packer.5D80B23121
CyrenW32/VB.AS.gen!Eldorado
SymantecW32.IRCBot
Elasticmalicious (high confidence)
ESET-NOD32a variant of Win32/Injector.AZB
TrendMicro-HouseCallMal_BUZUS-7
ClamAVWin.Trojan.Buzus-21328
KasperskyTrojan.Win32.Buzus.dini
BitDefenderTrojan.Crypt.Gen.1
NANO-AntivirusTrojan.Win32.Buzus.mfkcy
CynetMalicious (score: 100)
AvastWin32:RATX-gen [Trj]
TencentWin32.Trojan.Buzus.Pjgl
Ad-AwareTrojan.Crypt.Gen.1
EmsisoftTrojan.Crypt.Gen.1 (B)
ComodoTrojWare.Win32.Buzus.sdqu@43svf7
DrWebTrojan.VbCrypt.250
VIPRETrojan.Crypt.Gen.1
TrendMicroMal_BUZUS-7
McAfee-GW-EditionBehavesLike.Win32.Trojan.jc
SentinelOneStatic AI – Malicious PE
FireEyeGeneric.mg.789be5860320cbb6
SophosML/PE-A + Mal/VB-ABH
APEXMalicious
GDataTrojan.Crypt.Gen.1
JiangminTrojan.Buzus.edr
WebrootW32.Infostealer.Gen
AviraTR/Dropper.Gen
Antiy-AVLTrojan/Generic.ASMalwS.AA
ArcabitTrojan.Crypt.Gen.1
ZoneAlarmWorm.Win32.VBNA.d
MicrosoftPWS:Win32/Zbot.GG!MTB
GoogleDetected
AhnLab-V3Trojan/Win32.Buzus.C38876
MAXmalware (ai score=100)
VBA32Trojan.VBO.010766
MalwarebytesMalware.AI.1194154476
RisingMalware.Undefined!8.C (TFE:3:olnowYvjrNH)
YandexTrojan.GenAsa!FMt9fI8HXTc
IkarusIRC-Worm.SuspectCRC
MaxSecureTrojan.Malware.976043.susgen
FortinetW32/VBInjector.W!tr
AVGWin32:RATX-gen [Trj]
PandaTrj/Genetic.gen
CrowdStrikewin/malicious_confidence_100% (W)

How to remove Malware.AI.1194154476?

Malware.AI.1194154476 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment