Malware.AI.1366097078 (file analysis)

The Malware.AI.1366097078 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.1366097078 virus can do?

Sample contains Overlay data
The binary contains an unknown PE section name indicative of packing
The executable is compressed using UPX
Authenticode signature is invalid
Anomalous binary characteristics

How to determine Malware.AI.1366097078?


File Info:
name: 1041E08E4EFB74552A36.mlw
path: /opt/CAPEv2/storage/binaries/2bb21636b18bfbf9a0944b3e60b5865fe1a6be83a4a3234bc45de2dbf39c03cc
crc32: CFC324C4
md5: 1041e08e4efb74552a369ef508311da9
sha1: cda04bb190a2d3f66dbc012854a8b1da4c750efd
sha256: 2bb21636b18bfbf9a0944b3e60b5865fe1a6be83a4a3234bc45de2dbf39c03cc
sha512: 0767cd1d0ec5b629e48ace802eba97c6dfc77fc4bd512753bfc0ec1e558c4da3768bc024f9a21907adc81e219b11651e0937cba7d2c619a05bd2e11af16d3920
ssdeep: 3072:cYPIT0OQKiY7TqxgBVRTv+pgzaFnMIDgkQUlKKRNjTw2eLgRPBKcAdKx:cdsKiY1Vj7IDgkQdK3jTwXgRk3Kx
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1E264BF117690C836D079077314A79672E7B67E306A3B8A83B14931871DF37E49B6B3CA
sha3_384: 311e554ffc4cf547205e07ef57edea36e881913dd0eb851abc24563b898b157f5a9102e58cfd81d6f8c163d2973b4679
ep_bytes: e855490000e916feffff8bc18b4c2404
timestamp: 2009-09-10 04:15:00

Version Info:
0: [No Data]

Malware.AI.1366097078 also known as:

Bkav	W32.AIDetectMalware
Elastic	malicious (high confidence)
Skyhigh	BehavesLike.Win32.Generic.fm
Malwarebytes	Malware.AI.1366097078
Zillya	Dropper.Scrop.Win32.424
Sangfor	Trojan.Win32.Save.a
Cybereason	malicious.190a2d
tehtris	Generic.Malware
APEX	Malicious
Cynet	Malicious (score: 100)
DrWeb	Trojan.DownLoader33.18149
Sophos	Generic ML PUA (PUA)
SentinelOne	Static AI – Malicious PE
Google	Detected
Antiy-AVL	Virus/Win32.Expiro.imp
AhnLab-V3	Malware/Win32.Generic.C2977225
McAfee	Artemis!1041E08E4EFB
Ikarus	Trojan.Crypt
MaxSecure	Trojan.Malware.117564371.susgen
Fortinet	PossibleThreat.PALLASNET.H
DeepInstinct	MALICIOUS

How to remove Malware.AI.1366097078?

Malware.AI.1366097078 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X