Malware

What is “Malware.AI.126648700”?

Malware Removal

The Malware.AI.126648700 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.126648700 virus can do?

  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid
  • Uses Windows utilities to create a scheduled task
  • Deletes executed files from disk

How to determine Malware.AI.126648700?



File Info:

name: ECA36CF4FCED07327286.mlw
path: /opt/CAPEv2/storage/binaries/dd58f920017391c9889aa8295a6fda0d89d3335d23d19b2af3eaa354cb36dc45
crc32: 0462763A
md5: eca36cf4fced07327286587851886aa3
sha1: f5f0057c970efa72a7443e5c06836cca4ae531d8
sha256: dd58f920017391c9889aa8295a6fda0d89d3335d23d19b2af3eaa354cb36dc45
sha512: ab8af497730531de3b1db05263b16e4c9f58e3fcbfc5036c0795abf73c37c3f4b8bcad9d99cd59d665863caad5c4c289777d01244b428be6fa1d23b007d9037b
ssdeep: 6144:LBlkZvaF4NTBQsLZhPCOttKm4gol5rMP1D25+L2nyoJ1ZmiSOa1KjDZGxrJg1kZw:LoSWNTusf2H2D2G2nyX2a1WA+ZF
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T193744F8C2732899ED3F9CFB96AC6F5BD226C52333D0A1A57F2545290179892C2EC3771
sha3_384: 6b166060f5e875c2036c054b9186157b5266b7fe38db3095303a1393a158ed70aa5d79504e16877bd6451780b8bcb850
ep_bytes: 68ac00000068000000006868804100e8
timestamp: 2019-07-30 08:52:45


Version Info:

0: [No Data]

Malware.AI.126648700 also known as:

BkavW32.AIDetectMalware
LionicTrojan.Win32.Generic.4!c
Elasticmalicious (high confidence)
SkyhighBehavesLike.Win32.RealProtect.fh
McAfeeRDN/Generic.dx
SangforTrojan.Win32.Save.a
AlibabaTrojan:Win32/Fuery.2bc4a889
Cybereasonmalicious.c970ef
BitDefenderThetaGen:NN.ZexaF.36680.wuW@aKhnOrd
SymantecML.Attribute.HighConfidence
CynetMalicious (score: 100)
ClamAVWin.Trojan.Generic-10011119-0
AvastWin32:Malware-gen
SophosGeneric ML PUA (PUA)
SentinelOneStatic AI – Malicious PE
VaristW32/Fuery.P.gen!Eldorado
GoogleDetected
AhnLab-V3Malware/Win.Generic.C5291507
MalwarebytesMalware.AI.126648700
TrendMicro-HouseCallTROJ_GEN.R002H06L723
RisingTrojan.Generic@AI.100 (RDML:Nc0YokrOokIhpCfdbGYx3Q)
FortinetW32/PossibleThreat
AVGWin32:Malware-gen
DeepInstinctMALICIOUS
CrowdStrikewin/malicious_confidence_60% (W)

How to remove Malware.AI.126648700?

Malware.AI.126648700 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment