Should I remove “Malware.AI.1258655236”?

The Malware.AI.1258655236 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.1258655236 virus can do?

The binary contains an unknown PE section name indicative of packing
The binary likely contains encrypted or compressed data.
The executable is likely packed with VMProtect
Authenticode signature is invalid

How to determine Malware.AI.1258655236?


File Info:
name: 4AD5E9D7164C34E544BE.mlw
path: /opt/CAPEv2/storage/binaries/5b773496e59d592305220e8f3ba720c3e363ebafc4811471de89b2079857ebd7
crc32: 09E565E0
md5: 4ad5e9d7164c34e544bef459f0aa2665
sha1: 374fdf87e6a95df976c1ce7b627614efd63eace8
sha256: 5b773496e59d592305220e8f3ba720c3e363ebafc4811471de89b2079857ebd7
sha512: cd898bd209e3a49fce62bd872a73a904d373a12303ca66d6c560b2c8cf8ae64934a967a44a623f480a5f6f0ce608b5b93fbefaa034ea650c1e68f6a1c61040a9
ssdeep: 24576:gWKqa4hnzP3w7L3rmZmpk7FSQFW2iJ+N07/TwYV1CdZdQ+4lT+iFgip:gSrwf3aZmpOFU2iQNIUc1Lxp
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T16D4523562F67B5A4E0CA1B347225C3FE112A248C8E936FF07AD1672DF09ED40396B1B5
sha3_384: 7acef30c5b9a266f7c291c8fe55768abd5cfb2801574f5e2c43302099141c5fc610aeacbf828d2136175d09cd8f05c82
ep_bytes: 686000da45e841540e00a785fefe67cd
timestamp: 2014-07-23 12:09:45

Version Info:
0: [No Data]

Malware.AI.1258655236 also known as:

Bkav	W32.AIDetect.malware2
Lionic	Trojan.Win32.Miner.tnnU
Elastic	malicious (high confidence)
DrWeb	Trojan.BtcMine.2866
MicroWorld-eScan	Application.BitCoinMiner.AIW
FireEye	Generic.mg.4ad5e9d7164c34e5
McAfee	GenericRXAG-LR!4AD5E9D7164C
Zillya	Trojan.Miner.Win32.4440
Sangfor	Suspicious.Win32.Malware.gen
CrowdStrike	win/malicious_confidence_100% (W)
Alibaba	Trojan:Win32/CoinMiner.6e6c3722
K7GW	Trojan ( 7000001c1 )
K7AntiVirus	Trojan ( 7000001c1 )
VirIT	Trojan.Win32.Generic.AAVT
Cyren	W32/BitCoin.J.gen!Eldorado
Symantec	Trojan.Gen.MBT
ESET-NOD32	Win32/CoinMiner.CAR
TrendMicro-HouseCall	TROJ_GEN.R002C0DK521
ClamAV	Win.Trojan.Miner-9835871-0
Kaspersky	Trojan.Win32.Miner.ays
BitDefender	Application.BitCoinMiner.AIW
SUPERAntiSpyware	Trojan.Agent/Gen-CoinMiner
Tencent	Win32.Trojan.Miner.Pgnd
Ad-Aware	Application.BitCoinMiner.AIW
Sophos	Generic PUA DH (PUA)
TrendMicro	TROJ_GEN.R002C0DK521
McAfee-GW-Edition	BehavesLike.Win32.Generic.tc
Emsisoft	Application.BitCoinMiner.AIW (B)
Ikarus	Trojan-PSW.Win32.Tepfer
GData	Application.BitCoinMiner.AIW
Jiangmin	Trojan/PSW.Tepfer.cbjx
Antiy-AVL	Trojan[PSW]/Win32.Tepfer
Arcabit	Application.BitCoinMiner.AIW
Microsoft	Trojan:Win32/CoinMiner!bit
Cynet	Malicious (score: 100)
VBA32	Trojan.Miner
ALYac	Application.BitCoinMiner.AIW
MAX	malware (ai score=78)
Malwarebytes	Malware.AI.1258655236
APEX	Malicious
Rising	Trojan.Miner!8.EA1 (CLOUD)
SentinelOne	Static AI – Malicious PE
MaxSecure	Trojan.Malware.9593850.susgen
Fortinet	W32/CoinMiner.ACN!tr
Cybereason	malicious.7164c3

How to remove Malware.AI.1258655236?

Malware.AI.1258655236 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X