Malware

Malware.AI.121625540 removal tips

Malware Removal

The Malware.AI.121625540 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.121625540 virus can do?

  • Unconventionial binary language: Chinese (Simplified)
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • The binary contains an unknown PE section name indicative of packing
  • The executable is compressed using UPX
  • Authenticode signature is invalid

How to determine Malware.AI.121625540?



File Info:

name: C6CA8A5F54EDA6C383B5.mlw
path: /opt/CAPEv2/storage/binaries/10644bfe88e7b98cb9c9a7eefcaacde49a46e36e4d5b9ca18fbf32c0299a126a
crc32: 72AC5D5B
md5: c6ca8a5f54eda6c383b5c3c6da311904
sha1: 76d5473528432de94848114a30fb80471352e88d
sha256: 10644bfe88e7b98cb9c9a7eefcaacde49a46e36e4d5b9ca18fbf32c0299a126a
sha512: e015009f48500d864df1b1f5bc9b5f1e9b4e5caef20fc7d05fd16273e0417c3c4c245d7284563d9ec332f3c286c97cdfcb29e5766b31139f3c2040ef25f7272e
ssdeep: 6144:xVinGvLD89Pj3OJRGAOz+F0V9wgNfvZoS:xViYaiJRGk0V9DdxoS
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1BB547D2179D1C451E3F205715AA1CB910B36F5F4CB308AE777C842EE9D64AD0B63AFA1
sha3_384: 828b7a3c7ea59b8d4f687ec47cdf16dc207c61358842da7836f038cb152e07a27e1c27ead43c7394038af5d7d4325ddc
ep_bytes: 60be00902c018dbe0080f9ffc78730ef
timestamp: 2020-10-26 05:06:18


Version Info:

FileVersion: 1.0.3.7
InternalName: SYS.exe
LegalCopyright: Copyright (C) 2020
OriginalFilename: SYS.exe
ProductVersion: 1.0.3.7
Translation: 0x0804 0x04b0

Malware.AI.121625540 also known as:

MicroWorld-eScanGen:Variant.Fragtor.137513
ClamAVWin.Malware.Razy-9830431-0
FireEyeGeneric.mg.c6ca8a5f54eda6c3
McAfeeArtemis!C6CA8A5F54ED
CylanceUnsafe
SangforTrojan.Win32.Save.a
Cybereasonmalicious.528432
BitDefenderThetaGen:NN.ZexaF.34646.rm0@aWLMsuaj
SymantecML.Attribute.HighConfidence
Elasticmalicious (moderate confidence)
AvastWin32:TrojanX-gen [Trj]
CynetMalicious (score: 100)
BitDefenderGen:Variant.Fragtor.137513
Ad-AwareGen:Variant.Fragtor.137513
EmsisoftGen:Variant.Fragtor.137513 (B)
ComodoPacked.Win32.MUPX.Gen@24tbus
VIPREGen:Variant.Fragtor.137513
Trapminesuspicious.low.ml.score
SophosGeneric ML PUA (PUA)
GDataGen:Variant.Fragtor.137513
MAXmalware (ai score=82)
ArcabitTrojan.Fragtor.D21929
MicrosoftTrojan:Win32/Wacatac.B!ml
GoogleDetected
AhnLab-V3Malware/Win32.Generic.C4195480
MalwarebytesMalware.AI.121625540
APEXMalicious
SentinelOneStatic AI – Malicious PE
AVGWin32:TrojanX-gen [Trj]

How to remove Malware.AI.121625540?

Malware.AI.121625540 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment