Malware

Malware.AI.1406690794 removal guide

Malware Removal

The Malware.AI.1406690794 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.1406690794 virus can do?

  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • Dynamic (imported) function loading detected
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • Anomalous binary characteristics

How to determine Malware.AI.1406690794?



File Info:

name: E1F06C3D3173E2F16766.mlw
path: /opt/CAPEv2/storage/binaries/a3970443fbb235e9d7944a5d19942be2af89fe6cf076267fb570b5ea58bc28a3
crc32: B06188E7
md5: e1f06c3d3173e2f1676678d3814acf26
sha1: bf884eff7ac638125d679c4878eb6934e8022e37
sha256: a3970443fbb235e9d7944a5d19942be2af89fe6cf076267fb570b5ea58bc28a3
sha512: 3137659b20c2d6d6fdc3e0521a3c64fedad004f4db0107740718370bb315e6ce59e12e0ad38ecb9f39031e9c4925316f981d069a72ec88ed19e174365ba47f20
ssdeep: 768:JCJD8lZZ5hbFJILcve34EpHJvDlVGjg46KwcE1XDkDqvVuowBoDs97s:J3ZZ5JILcveIElreecAzIIwes97
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1DF33BF0267EA6138F4F60A3074FEB2359476FD321C1ADB4E7214D68A1938D45D930B3B
sha3_384: 40ff3da10fb1ca7139e4e2379da85a90839440b75f404c3670995340fe47e82ca5b66ce7b0de436403768b6bbb8ecf7e
ep_bytes: e82bffffff6a5868082d0001e8cdfeff
timestamp: 2007-03-03 10:01:51


Version Info:

CompanyName: Microsoft Corporation
FileDescription: Userinit Logon Application
FileVersion: 6.1.7601.17514 (win7sp1_rtm.101119-1850)
InternalName: userinit
LegalCopyright: © Microsoft Corporation. All rights reserved.
OriginalFilename: USERINIT.EXE
ProductName: Microsoft® Windows® Operating System
ProductVersion: 6.1.7601.17514
Translation: 0x0409 0x04b0

Malware.AI.1406690794 also known as:

Elasticmalicious (high confidence)
FireEyeGeneric.mg.e1f06c3d3173e2f1
McAfeeArtemis!E1F06C3D3173
CylanceUnsafe
SangforTrojan.Win32.Save.a
CrowdStrikewin/malicious_confidence_100% (D)
CyrenW32/S-7e8067f7!Eldorado
SymantecML.Attribute.HighConfidence
APEXMalicious
KasperskyTrojan.Win32.Inject.aijoo
NANO-AntivirusVirus.Win32.Virut-Gen.bwpxnc
SophosGeneric ML PUA (PUA)
McAfee-GW-EditionBehavesLike.Win32.Virut.qc
SentinelOneStatic AI – Malicious PE
AviraTR/Patched.Gen
MicrosoftTrojan:Win32/Sabsik.FL.B!ml
CynetMalicious (score: 100)
Acronissuspicious
BitDefenderThetaGen:NN.ZexaF.34062.dq0@a0h@VXci
MalwarebytesMalware.AI.1406690794
TencentWin32.Trojan.Inject.Alie
IkarusWin32.Outbreak
FortinetW32/Generic.AC.2E7!tr
AVGWin32:Virut-AGQ
AvastWin32:Virut-AGQ

How to remove Malware.AI.1406690794?

Malware.AI.1406690794 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment