Malware

Malware.AI.1358604974 removal tips

Malware Removal

The Malware.AI.1358604974 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.1358604974 virus can do?

  • Executable code extraction
  • Creates RWX memory
  • Repeatedly searches for a not-found process, may want to run with startbrowser=1 option
  • The binary likely contains encrypted or compressed data.
  • Uses Windows utilities for basic functionality
  • Deletes its original binary from disk
  • Creates a hidden or system file
  • Creates a copy of itself
  • Uses suspicious command line tools or Windows utilities

How to determine Malware.AI.1358604974?



File Info:

crc32: 6F62C45F
md5: bc319783a02273ddb84da7faf4a2018f
name: BC319783A02273DDB84DA7FAF4A2018F.mlw
sha1: f6b5a3f5f1c7ec349771597baea0eabb27f3522b
sha256: 12e6e9aaa09e97c17f3064962c57e574e3b9307a92ef9b2387fa4a6841d43f2e
sha512: 777b68b2037bcbb408aab7f28102e16485aa8cf6a47f9b8c574e56dfad72621cd7bda6676dc9eba7c3b52450035a91c88a3802795ae84b25980219408592b6dd
ssdeep: 12288:By6ppCa40V2+Uq797+kA/86ZWn5tx5uU29cg+8hkBq:sa40V2dq7WyxQ4GhkBq
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright: Copyright (C) 2021
InternalName: AAAA
FileVersion: 1, 0, 0, 1
CompanyName: 
LegalTrademarks: 
ProductName: Application AAAA
ProductVersion: 1, 0, 0, 1
FileDescription: Application MFC AAAA
OriginalFilename: AAAA.EXE
Translation: 0x040c 0x04b0

Malware.AI.1358604974 also known as:

Elasticmalicious (high confidence)
DrWebBackDoor.Spy.422
CynetMalicious (score: 100)
ALYacDeepScan:Generic.Mulinex.3D389B73
CylanceUnsafe
CrowdStrikewin/malicious_confidence_70% (D)
BitDefenderDeepScan:Generic.Mulinex.3D389B73
Cybereasonmalicious.3a0227
APEXMalicious
KasperskyVHO:Backdoor.Win32.Farfli.gen
MicroWorld-eScanDeepScan:Generic.Mulinex.3D389B73
TencentMalware.Win32.Gencirc.11bc3732
Ad-AwareDeepScan:Generic.Mulinex.3D389B73
BitDefenderThetaGen:NN.ZexaF.34678.Lq0@aq!uYxpe
TrendMicroBKDR_ZEGOST.SM34
McAfee-GW-EditionBehavesLike.Win32.Emotet.jc
FireEyeGeneric.mg.bc319783a02273dd
EmsisoftDeepScan:Generic.Mulinex.3D389B73 (B)
SentinelOneStatic AI – Suspicious PE
AviraHEUR/AGEN.1101570
MicrosoftBackdoor:Win32/Zegost.KM!MTB
ArcabitDeepScan:Generic.Mulinex.3D389B73
ZoneAlarmHEUR:Trojan.Win32.Generic
GDataDeepScan:Generic.Mulinex.3D389B73
Acronissuspicious
McAfeeGenericRXOD-IK!BC319783A022
MAXmalware (ai score=86)
VBA32BScope.Backdoor.Farfli
MalwarebytesMalware.AI.1358604974
TrendMicro-HouseCallBKDR_ZEGOST.SM34

How to remove Malware.AI.1358604974?

Malware.AI.1358604974 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment