Malware.AI.1279102406 removal tips

The Malware.AI.1279102406 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.1279102406 virus can do?

The binary contains an unknown PE section name indicative of packing
The executable is compressed using UPX
Authenticode signature is invalid

How to determine Malware.AI.1279102406?


File Info:
name: CD67222BF6F831DA8453.mlw
path: /opt/CAPEv2/storage/binaries/2a2cecb2da0ecf5b1e9240a44fcbaf198d4d5def862e80ae92ddf6cd2c420a9f
crc32: B8641758
md5: cd67222bf6f831da84539ea96c08887e
sha1: 3e239c6b4b84e2147df7e8a1c0dafc6ba43bd4c9
sha256: 2a2cecb2da0ecf5b1e9240a44fcbaf198d4d5def862e80ae92ddf6cd2c420a9f
sha512: 594a23db2c6c0c69f1b5599fc1b5f68637f81ae9e157a855b1e1f5fb5eee1ec4b5300bf58ff25c740fd5830747f2559fb2d0da2a3cd2ed31c244a14ed7ebd879
ssdeep: 24576:jZgaSeIjt7P9MS4BGkiYTJPTroZTXqY7RC0WGd:jZgaSLt7P974BGGTNT8xXqY7RC0W
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1B755D505BFC189ABD035153148E3D7826277A9B57F62875BBA59333E3D203822D162FB
sha3_384: 3d0d8eb87c575c7174e555195f4ea65b3fcbdd6015e43482f1bbb5bb243f910fd59a01b200d7fd131440fbc7bd5cd1e6
ep_bytes: 60be003068008dbe00e0d7ff57eb0b90
timestamp: 2012-06-14 15:50:03

Version Info:
Comments: Created with Setup Factory
CompanyName: Indigo Rose Corporation
FileDescription: Setup Application
FileVersion: 9.1.0.0
InternalName: suf_rt
LegalCopyright: Runtime Engine Copyright © 2012 Indigo Rose Corporation (www.indigorose.com)
LegalTrademarks: Setup Factory is a trademark of Indigo Rose Corporation
OriginalFilename: suf_rt.exe
ProductName: Setup Factory Runtime
ProductVersion: 9.1.0.0
Translation: 0x0409 0x04b0

Malware.AI.1279102406 also known as:

Bkav	W32.Common.624326EE
Lionic	Trojan.Win32.Generic.4!c
FireEye	Generic.mg.cd67222bf6f831da
Cylance	unsafe
Sangfor	Trojan.Win32.Save.a
CrowdStrike	win/malicious_confidence_60% (D)
Alibaba	Trojan:Win32/Generic.56bc3f53
Cyren	W32/Backdoor.J.gen!Eldorado
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (moderate confidence)
APEX	Malicious
Cynet	Malicious (score: 100)
Avast	Win32:Malware-gen
F-Secure	Trojan.TR/Crypt.ULPM.Gen
McAfee-GW-Edition	BehavesLike.Win32.RealProtect.tt
Trapmine	suspicious.low.ml.score
Sophos	Generic ML PUA (PUA)
Ikarus	Trojan.Crypt
Avira	TR/Crypt.ULPM.Gen
Xcitium	Packed.Win32.MUPX.Gen@24tbus
Microsoft	Program:Win32/Wacapew.C!ml
Google	Detected
McAfee	Artemis!CD67222BF6F8
Malwarebytes	Malware.AI.1279102406
Yandex	Trojan.GenAsa!YUjUsZtIeSs
SentinelOne	Static AI – Suspicious PE
MaxSecure	Trojan.Malware.74171168.susgen
Fortinet	W32/ULPM.16C0!tr
AVG	Win32:Malware-gen
DeepInstinct	MALICIOUS

How to remove Malware.AI.1279102406?

Malware.AI.1279102406 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X