Malware

Should I remove “Malware.AI.1370214414”?

Malware Removal

The Malware.AI.1370214414 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.1370214414 virus can do?

  • Sample contains Overlay data
  • Uses Windows utilities for basic functionality
  • HTTPS urls from behavior.
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX
  • Authenticode signature is invalid
  • Attempts to modify proxy settings
  • Yara detections observed in process dumps, payloads or dropped files

How to determine Malware.AI.1370214414?



File Info:

name: ACB3AD2A7702BD886310.mlw
path: /opt/CAPEv2/storage/binaries/079990c7ce7938a1f03796c181557b139578ad40b5e210144ea3d9e064b80936
crc32: 07F4C13C
md5: acb3ad2a7702bd8863103f759d25dffc
sha1: c2fe23d98c68c4b122f337847e738c3f54f4603b
sha256: 079990c7ce7938a1f03796c181557b139578ad40b5e210144ea3d9e064b80936
sha512: 97544493675b2af6212d007aa8cd831e4edde9decb5d7c80634a41cd8ad229d61054647a238942ba1c700a7e16ce48277cc46ee9f91f41210abb85c57962804d
ssdeep: 6144:avwFEWVn/nWv9Hgd0HNjp7J3yTSeaxClIIIjBRjBRL:avcVnQWMj7J3AJgFHd
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T10744120F9EC82F08E55D59BFEB0674388D71BE52365ADA34091042EE2E6390C59B5BDC
sha3_384: 8edb60d6ef1ca05ae537fd97b13cd73a9fb3ad07615a2b2595a13c1135d744a1dd719afe97788add309c75a0def1403d
ep_bytes: 60be001044008dbe0000fcff5783cdff
timestamp: 2008-03-04 07:35:03


Version Info:

0: [No Data]

Malware.AI.1370214414 also known as:

BkavW32.AIDetectMalware
Elasticmalicious (moderate confidence)
MicroWorld-eScanTrojan.Downloader.Small.AAKR
FireEyeGeneric.mg.acb3ad2a7702bd88
CAT-QuickHealWorm.Socks.S.mue
SkyhighBehavesLike.Win32.Generic.dc
ALYacTrojan.Downloader.Small.AAKR
Cylanceunsafe
ZillyaTrojan.Blocker.Win32.167830
SangforTrojan.Win32.Save.a
CrowdStrikewin/malicious_confidence_100% (W)
AlibabaWorm:Win32/Blocker.9ec7dfee
K7GWPassword-Stealer ( 00023ecb1 )
K7AntiVirusPassword-Stealer ( 00023ecb1 )
BitDefenderThetaAI:Packer.3B8F8D2C1B
SymantecDownloader
tehtrisGeneric.Malware
ESET-NOD32a variant of Win32/Socks.NAM
APEXMalicious
AvastWin32:Dh-A [Heur]
ClamAVWin.Worm.Socks-2
KasperskyTrojan-Ransom.Win32.Blocker.ivcc
BitDefenderTrojan.Downloader.Small.AAKR
NANO-AntivirusTrojan.Win32.Socks.rkqft
TencentMalware.Win32.Gencirc.10bfbb19
EmsisoftTrojan.Downloader.Small.AAKR (B)
BaiduWin32.Trojan-Downloader.Agent.au
F-SecureTrojan.TR/Drop.Agent.22529
DrWebTrojan.DownLoader10.35550
VIPRETrojan.Downloader.Small.AAKR
TrendMicroWORM_SOCKS.EC
Trapminemalicious.high.ml.score
SophosMal/Koceg-A
MAXmalware (ai score=80)
GDataTrojan.Downloader.Small.AAKR
JiangminTrojanDropper.Small.bbd
GoogleDetected
AviraTR/Drop.Agent.22529
VaristW32/Socks.A.gen!Eldorado
Antiy-AVLTrojan/Win32.Socks
KingsoftWin32.Troj.Undef.a
ArcabitTrojan.Downloader.Small.AAKR
ViRobotTrojan.Win.Z.Socks.258564
ZoneAlarmTrojan-Ransom.Win32.Blocker.ivcc
MicrosoftWorm:Win32/Autorun.gen!BS
CynetMalicious (score: 100)
AhnLab-V3Trojan/Win32.Agent.C71992
Acronissuspicious
McAfeeArtemis!ACB3AD2A7702
VBA32BScope.Trojan.Click
MalwarebytesMalware.AI.1370214414
PandaTrj/CI.A
TrendMicro-HouseCallWORM_SOCKS.EC
RisingRansom.Blocker!8.12A (TFE:5:oIwjiYr1W5D)
IkarusTrojan-Downloader.Small
MaxSecureWorm.Socks
FortinetW32/Socks.NAK!tr
AVGWin32:Dh-A [Heur]
DeepInstinctMALICIOUS
alibabacloudTrojan[downloader]:Win/Psw

How to remove Malware.AI.1370214414?

Malware.AI.1370214414 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment