Malware

Malware.AI.1366190670 information

Malware Removal

The Malware.AI.1366190670 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.1366190670 virus can do?

  • Dynamic (imported) function loading detected
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid
  • Detects the presence of Wine emulator via registry key
  • Checks the version of Bios, possibly for anti-virtualization
  • Detects VirtualBox through the presence of a registry key

How to determine Malware.AI.1366190670?



File Info:

name: CF7F7AF702F7D081DEEC.mlw
path: /opt/CAPEv2/storage/binaries/3a2a027ced1a1a9ba8200b1772fbad58dbfb4345dd4519f7146b420ba991954b
crc32: C8A4EA16
md5: cf7f7af702f7d081deecac1d86c649bd
sha1: 3a3e9ea6fab4ef9f2651b776785417207055f192
sha256: 3a2a027ced1a1a9ba8200b1772fbad58dbfb4345dd4519f7146b420ba991954b
sha512: 9b554bfc3af80a55aa85a7ef071b809faec66e6f73e7074e303bb5d0cb1d39d7a324ef898bbdf7459e53dd408727527f8970a388e6b684b436479e357e13bbde
ssdeep: 49152:JyaFFldFBmWctOwNa77lrJj+hZmtb2/66QB3+wX9Px:JyaFfHBmWctOwo77f8L6R3+UJ
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1DDB52A92B50976CFD48E17B89127CE826E9D07FD472148C7D8ACB9797DA3CC121B6C28
sha3_384: 6f661cf6e1afd83b041c7f04463a357f7fb16a5ce3a3f2c86308b0b5fb503aca9d333bad2f54c7f0f4653f1ccebc1d82
ep_bytes: 565053e801000000cc5889c3402d0000
timestamp: 2018-01-29 11:24:43


Version Info:

Translation: 0x0000 0x04b0
FileDescription:  
FileVersion: 0.0.0.0
InternalName: SetLocalAdminPassword.exe
LegalCopyright:  
OriginalFilename: SetLocalAdminPassword.exe
ProductVersion: 0.0.0.0
Assembly Version: 0.0.0.0

Malware.AI.1366190670 also known as:

BkavW32.AIDetect.malware1
LionicTrojan.Win32.Generic.4!c
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Symmi.85395
FireEyeGeneric.mg.cf7f7af702f7d081
McAfeeArtemis!CF7F7AF702F7
CylanceUnsafe
ZillyaTrojan.Generic.Win32.362413
SangforTrojan.Win32.Generic.8
AlibabaTrojan:Win32/Themida.07e33f8f
CrowdStrikewin/malicious_confidence_100% (W)
SymantecML.Attribute.HighConfidence
APEXMalicious
Paloaltogeneric.ml
KasperskyHEUR:Trojan.Win32.Generic
BitDefenderGen:Variant.Symmi.85395
NANO-AntivirusTrojan.Win32.Razy.exuxve
AvastWin32:Malware-gen
TencentWin32.Trojan.Generic.Tbsp
Ad-AwareGen:Variant.Symmi.85395
SophosMal/Generic-S
ComodoMalware@#165g6h7631lt4
VIPRETrojan.Win32.Generic!BT
TrendMicroTROJ_GEN.R002C0WH321
McAfee-GW-EditionBehavesLike.Win32.Flyagent.vh
EmsisoftGen:Variant.Symmi.85395 (B)
SentinelOneStatic AI – Malicious PE
GDataGen:Variant.Symmi.85395
JiangminTrojan.Generic.cfqno
AviraHEUR/AGEN.1102861
Antiy-AVLTrojan/Generic.ASMalwS.24456C0
MicrosoftTrojan:Win32/Occamy.C3A
CynetMalicious (score: 100)
Acronissuspicious
BitDefenderThetaGen:NN.ZexaF.34294.vw0@a0FiqZg
ALYacGen:Variant.Symmi.85395
MAXmalware (ai score=82)
VBA32BScope.Trojan.Fuerboos
MalwarebytesMalware.AI.1366190670
TrendMicro-HouseCallTROJ_GEN.R002C0WH321
RisingTrojan.Generic@ML.100 (RDMK:hQ4Aplq+ATgRWRmOG+IjQQ)
YandexTrojan.Agent!xHb+dFvAA3U
IkarusTrojan.Win32.Themida
FortinetW32/Generic_PUA_DK
AVGWin32:Malware-gen

How to remove Malware.AI.1366190670?

Malware.AI.1366190670 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment