Malware.AI.1407590728 removal instruction

The Malware.AI.1407590728 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.1407590728 virus can do?

Behavioural detection: Executable code extraction – unpacking
Unconventionial binary language: Chinese (Simplified)
Unconventionial language used in binary resources: Chinese (Simplified)
Authenticode signature is invalid

How to determine Malware.AI.1407590728?


File Info:
name: 916EA3DC1F6A9407F82D.mlw
path: /opt/CAPEv2/storage/binaries/3cf82203885216f3a9b12d82406636dfd6797b2319cac497bdffb067fcf61db0
crc32: 9B53A229
md5: 916ea3dc1f6a9407f82dcb8e5752e9df
sha1: 8659302b3cf284fcac87922b93346eaf5e2252ff
sha256: 3cf82203885216f3a9b12d82406636dfd6797b2319cac497bdffb067fcf61db0
sha512: ea57e34329411135d6781ea597b3364aa6550d94fadaeef364009c10ea33374c2cbd8694f4981d35b74eb3e865edcd04de3906657d88a13fb714204f23eb63e7
ssdeep: 384:IVzoSa44luUciNYdZMW4kswOAmpiNY2luUKzoSa4R:gkluUXMMWjsxsTuUKk
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1D0432851B05CE320E26987B04563CAF441227E7BED603A976E9EBF4FADFB2D11941027
sha3_384: 797ad8401ee357d836ca30d693a7b5978e75bf193abb87ead790fb42ddae1e4ad9a1555ff2ff06450938138787175fb3
ep_bytes: 6874604000e8eeffffff000000000000
timestamp: 1970-01-01 00:00:00

Version Info:
Translation: 0x0804 0x04b0
Comments: 易游网娱平台游戏工具
CompanyName: Stnts
FileDescription: Game Tools
LegalCopyright: Stnts.Gxb.Wq
ProductName: Eyoo Tools
FileVersion: 1.00.0023
ProductVersion: 1.00.0023
InternalName: Play
OriginalFilename: Play.exe

Malware.AI.1407590728 also known as:

Bkav	W32.AIDetectMalware
Lionic	Virus.Win32.Alman.lfEy
Elastic	malicious (high confidence)
MicroWorld-eScan	Trojan.GenericKD.69449582
FireEye	Generic.mg.916ea3dc1f6a9407
Skyhigh	BehavesLike.Win32.Virut.qz
ALYac	Trojan.GenericKD.69449582
Cylance	unsafe
VIPRE	Trojan.GenericKD.69449582
Sangfor	Hacktool.Win32.Mimikatz.Vffx
BitDefender	Trojan.GenericKD.69449582
CrowdStrike	win/malicious_confidence_100% (W)
BitDefenderTheta	Gen:NN.ZevbaCO.36792.dm0@auOXr2db
VirIT	Trojan.Win32.Siggen6.BDNM
Symantec	ML.Attribute.HighConfidence
APEX	Malicious
ClamAV	Win.Malware.Vbtrojan-7654040-0
NANO-Antivirus	Trojan.Win32.TrjGen.dzhfim
Rising	Hacktool.Mimikatz!8.337 (CLOUD)
Trapmine	malicious.high.ml.score
Emsisoft	Trojan.GenericKD.69449582 (B)
Ikarus	Virus.Alman
MAX	malware (ai score=81)
Webroot	W32.Malware.Gen
Google	Detected
Antiy-AVL	Trojan/Win32.Tgenic
Microsoft	HackTool:Win32/Mimikatz.D
Arcabit	Trojan.Generic.D423B76E
GData	Trojan.GenericKD.69449582
Cynet	Malicious (score: 100)
McAfee	Artemis!916EA3DC1F6A
DeepInstinct	MALICIOUS
VBA32	TScope.Trojan.VB
Malwarebytes	Malware.AI.1407590728
TrendMicro-HouseCall	TROJ_GEN.R002H09IU23
SentinelOne	Static AI – Malicious PE
AVG	Win32:WrongInf-A [Susp]
Cybereason	malicious.b3cf28
Avast	Win32:WrongInf-A [Susp]

How to remove Malware.AI.1407590728?

Malware.AI.1407590728 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X