Malware.AI.120162985 removal

The Malware.AI.120162985 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.120162985 virus can do?

The binary contains an unknown PE section name indicative of packing
The executable is compressed using UPX
Authenticode signature is invalid

How to determine Malware.AI.120162985?


File Info:
name: CD58CE74B6E186217969.mlw
path: /opt/CAPEv2/storage/binaries/43326c5bcb03b3521f9c922ace4d02536415751b7cbc3e4ec36d3d07c7068caa
crc32: 33590F19
md5: cd58ce74b6e1862179690995ae811edc
sha1: 759307c975ec10d7254912d767b0fe96ad84dd85
sha256: 43326c5bcb03b3521f9c922ace4d02536415751b7cbc3e4ec36d3d07c7068caa
sha512: 5bb2f85bf582da57436b438b61c9ccb976c707812e8a85f84c254bbeedf4dc8432b2bfe3e0f7c4c0fb1b2e3fab1fc9b6a0f3c535ec0b3b4fd31b17ad219b5812
ssdeep: 6144:QrKWAYzF3S8/Ck9iG4H1GEmkiUrHtqOjs4G9x:Q9lDhJpwNq
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T167A419F939C2C13AD55AC8354992C28569E3B9B88F33060F7ACBB53E0A7EC405B27575
sha3_384: 3a208901d93d1704f440fb3660bbc0fed92ceb21b1fc519edbdab958e441685428e38d66b818f0e03f27c72752146688
ep_bytes: 60be00904c008dbe0080f3ff5783cdff
timestamp: 2007-01-29 20:16:33

Version Info:
Comments: Created with Setup Factory 7.0
CompanyName: 
FileDescription: Setup Application
FileVersion: 7.0.6.1
InternalName: suf70_rt
LegalCopyright: Runtime Engine Copyright © 2006 Indigo Rose Corporation (www.indigorose.com)
LegalTrademarks: Setup Factory is a trademark of Indigo Rose Corporation
OriginalFilename: suf70_rt.exe
PrivateBuild: 
ProductName: Setup Factory 7.0 Runtime
ProductVersion: 7.0.6.1
SpecialBuild: 
Translation: 0x0409 0x04b0

Malware.AI.120162985 also known as:

Bkav	W32.AIDetectMalware
Lionic	Trojan.Win32.Generic.4!c
FireEye	Generic.mg.cd58ce74b6e18621
Malwarebytes	Malware.AI.120162985
Sangfor	Trojan.Win32.Agent.Vll3
Alibaba	Trojan:Win32/Generic.f379e8cb
Cyren	W32/Backdoor.J.gen!Eldorado
Elastic	malicious (moderate confidence)
APEX	Malicious
Cynet	Malicious (score: 100)
Avast	Win32:Malware-gen
McAfee-GW-Edition	BehavesLike.Win32.Generic.gm
Sophos	Generic ML PUA (PUA)
Antiy-AVL	Trojan/Win32.SGeneric
Xcitium	Packed.Win32.MUPX.Gen@24tbus
Google	Detected
McAfee	RDN/Generic.dx
Cylance	unsafe
TrendMicro-HouseCall	TROJ_GEN.R03BH06FU23
SentinelOne	Static AI – Suspicious PE
MaxSecure	Trojan.Malware.185877641.susgen
Fortinet	W32/ULPM.16C0!tr
AVG	Win32:Malware-gen
DeepInstinct	MALICIOUS
CrowdStrike	win/malicious_confidence_90% (W)

How to remove Malware.AI.120162985?

Malware.AI.120162985 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X