How to remove “Malware.AI.1366478974”?

The Malware.AI.1366478974 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.1366478974 virus can do?

The binary likely contains encrypted or compressed data.
Network activity detected but not expressed in API logs

How to determine Malware.AI.1366478974?


File Info:
crc32: B3EEE80B
md5: 1e8c10aca8b1af079d130d59585bbe87
name: 1E8C10ACA8B1AF079D130D59585BBE87.mlw
sha1: fffad47c0363a714ad2b1804ec98fd86e1577e88
sha256: 22240b86f52405d2d69523a3c74e5aa576e5251d72cccbf07e91273e4391a324
sha512: cddd29afc17bca6324aaf422aa197fe2b2343f587aeadd40b3b5e13cddebf94a65bf46ab87ba66288562d899357fbb726df127ce316c2d4e930f8415cee09ef8
ssdeep: 3072:NbxXRBtuxDXNcFuDLDcUNIo++poWMI0WrwbLv/wRqzwpE7AsEoNx9ko3WDIu6:NbdktDcUW7+++QjOIwpxho3WDI
type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows

Version Info:
Translation: 0x0000 0x04b0
LegalCopyright: Copyright xa9  2019
Assembly Version: 1.0.0.0
InternalName: RsEncP.exe
FileVersion: 1.0.0.0
ProductName: RsEncP
ProductVersion: 1.0.0.0
FileDescription: RsEncP
OriginalFilename: RsEncP.exe

Malware.AI.1366478974 also known as:

DrWeb	Trojan.EncoderNET.24
Cynet	Malicious (score: 99)
ALYac	Gen:Variant.Razy.789642
Sangfor	Ransom.MSIL.Encoder.gen
CrowdStrike	win/malicious_confidence_100% (W)
Alibaba	Trojan:MSIL/Encoder.5d444a41
Cybereason	malicious.ca8b1a
Cyren	W32/Trojan.VHVH-2217
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of MSIL/Spy.Agent.CCB
APEX	Malicious
Avast	Win32:Trojan-gen
Kaspersky	HEUR:Trojan-Ransom.MSIL.Encoder.gen
BitDefender	Gen:Variant.Razy.789642
MicroWorld-eScan	Gen:Variant.Razy.789642
Tencent	Win32.Trojan.Razy.Ebhs
Ad-Aware	Gen:Variant.Razy.789642
BitDefenderTheta	Gen:NN.ZemsilF.34790.mm0@aOZ@0jl
VIPRE	Trojan.Win32.Generic!BT
TrendMicro	Ransom_Encoder.R03FC0WGA21
McAfee-GW-Edition	RDN/Ransom
FireEye	Gen:Variant.Razy.789642
Emsisoft	Gen:Variant.Razy.789642 (B)
Webroot	W32.Malware.Gen
Avira	TR/Spy.Agent.rxfqg
Microsoft	Ransom:Win32/Genasom
Arcabit	Trojan.Razy.DC0C8A
GData	Gen:Variant.Razy.789642
McAfee	RDN/Ransom
MAX	malware (ai score=84)
VBA32	TScope.Trojan.MSIL
Malwarebytes	Malware.AI.1366478974
Panda	Trj/GdSda.A
TrendMicro-HouseCall	Ransom_Encoder.R03FC0WGA21
Ikarus	Trojan.MSIL.Spy
Fortinet	W32/Encoder.CCB!tr
AVG	Win32:Trojan-gen
Paloalto	generic.ml
Qihoo-360	Win32/Ransom.Encoder.HwMAciIA

How to remove Malware.AI.1366478974?

Malware.AI.1366478974 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X