Malware

Malware.AI.1402302853 removal tips

Malware Removal

The Malware.AI.1402302853 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.1402302853 virus can do?

  • At least one process apparently crashed during execution
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • Authenticode signature is invalid
  • CAPE detected the Vidar malware family

How to determine Malware.AI.1402302853?



File Info:

name: B152492619FE883A5A98.mlw
path: /opt/CAPEv2/storage/binaries/7496273ab91f9b1d501839195a319b41898fdb6989e2ba23f23bc4449d5a0e0c
crc32: B8100DA0
md5: b152492619fe883a5a9868808c18bbab
sha1: 6e7edafe542dae7b0399634bbe77a71036838cc0
sha256: 7496273ab91f9b1d501839195a319b41898fdb6989e2ba23f23bc4449d5a0e0c
sha512: ef80a72b9f320fc93c76bdc8a42e650b07c3fc9b7e49c03d8d8aae610e12fa7cef227f2642112215b5f2ccc3fc52892ecb375e458c5c2a90ba887d468768ba1c
ssdeep: 12288:ujBYOi/4zHksGuhiCy3q31rsNd8bU/qrMqadn+eXJFDLhXVtPZmgNvkSXXJXBXjD:Axrs+1beYRIqgtgA/BLHA95TNz91cakd
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1EAE4BE26F2A2C07BC0322130DA6E2B318EBABA3255355847F7D50B555EA11D1BF3EB17
sha3_384: 717e347650cee7f70708c0e1ca5dba17274520fa937324d8ab3b0469187d518ee33e26fc6439cc485ef6cd500dc5989f
ep_bytes: e8e5a90000e989feffff8bff558bec83
timestamp: 2022-04-12 23:25:26


Version Info:

0: [No Data]

Malware.AI.1402302853 also known as:

BkavW32.AIDetect.malware2
FireEyeGeneric.mg.b152492619fe883a
McAfeeGenericRXTA-MY!B152492619FE
CylanceUnsafe
SangforTrojan.Win32.Save.a
K7AntiVirusPassword-Stealer ( 0054d1a31 )
BitDefenderGen:Variant.Fugrafa.239094
K7GWPassword-Stealer ( 0054d1a31 )
Cybereasonmalicious.e542da
CyrenW32/Agent.EOU.gen!Eldorado
ElasticWindows.Trojan.Vidar
ESET-NOD32a variant of Win32/PSW.Agent.OGR
APEXMalicious
Paloaltogeneric.ml
CynetMalicious (score: 100)
KasperskyHEUR:Trojan-Banker.Win32.Bandra.gen
AlibabaTrojanBanker:Win32/Bandra.03ab6135
MicroWorld-eScanGen:Variant.Fugrafa.239094
RisingStealer.OskiStealer!1.C41E (CLASSIC)
Ad-AwareGen:Variant.Fugrafa.239094
DrWebTrojan.PWS.Stealer.32957
TrendMicroTrojanSpy.Win32.VIDAR.YXCFXZ
McAfee-GW-EditionBehavesLike.Win32.Generic.jh
Trapminesuspicious.low.ml.score
EmsisoftGen:Variant.Fugrafa.239094 (B)
IkarusTrojan-PSW.Agent
GDataGen:Variant.Fugrafa.239094
JiangminTrojan.Banker.Bandra.em
AviraHEUR/AGEN.1248556
ArcabitTrojan.Fugrafa.D3A5F6
ZoneAlarmHEUR:Trojan-Banker.Win32.Bandra.gen
MicrosoftTrojan:Win32/Sabsik.FL.B!ml
TACHYONBanker/W32.Bandra.709120
AhnLab-V3Trojan/Win.Generic.C5085859
BitDefenderThetaGen:NN.ZexaF.34742.RqW@aSns5t
ALYacGen:Variant.Fugrafa.239094
MAXmalware (ai score=82)
MalwarebytesMalware.AI.1402302853
TrendMicro-HouseCallTrojanSpy.Win32.VIDAR.YXCFXZ
SentinelOneStatic AI – Malicious PE
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/Agent.OGR!tr
AVGWin32:BankerX-gen [Trj]
AvastWin32:BankerX-gen [Trj]
CrowdStrikewin/malicious_confidence_100% (W)

How to remove Malware.AI.1402302853?

Malware.AI.1402302853 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment