What is “Malware.AI.1409158143”?

The Malware.AI.1409158143 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.1409158143 virus can do?

CAPE extracted potentially suspicious content
Authenticode signature is invalid

How to determine Malware.AI.1409158143?


File Info:
name: 39B74E34DC460D262685.mlw
path: /opt/CAPEv2/storage/binaries/c133517bb41b8444e3c34af0445d9962004f49a3134f845c74d7848d604da991
crc32: 6E7685AA
md5: 39b74e34dc460d262685c11819ad3fe8
sha1: 75a7fca6b7520d8d7675fee3e99db10f9dd04c13
sha256: c133517bb41b8444e3c34af0445d9962004f49a3134f845c74d7848d604da991
sha512: 63ce082916dd76b4f775542f4b298bad0acad443715b28b5e7202da8033088751375c63cb378b9a40343311fe3ec64fd45cdb4fcafef041a205038d73447892a
ssdeep: 12288:Jq5WXZquYId425BZnjwTJBSam9fMFKPdjmGvgUTn0TNW:I5Wpqf2ZjwTJa4KPRdvtnIW
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1CEB4123C9FB841EADBAC323136B31E48D1CB45754403966B3EDD47916F876188827BBA
sha3_384: 8b6b659566f9def76d19660a8c2d4d0803b0aee04cadb5f349884d8db0981541d0bd750cee8a88a3d86debb99feafe6b
ep_bytes: ff250020400000000000000000000000
timestamp: 2022-08-13 10:29:41

Version Info:
Translation: 0x0000 0x04b0
Comments: 
CompanyName: 
FileDescription: server
FileVersion: 1.0.0.0
InternalName: server1.exe
LegalCopyright: Copyright ©  2015
LegalTrademarks: 
OriginalFilename: server1.exe
ProductName: server
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

Malware.AI.1409158143 also known as:

Bkav	W32.AIDetectNet.01
Cynet	Malicious (score: 99)
FireEye	Generic.mg.39b74e34dc460d26
CAT-QuickHeal	Trojan.YakbeexMSIL.ZZ4
McAfee	GenericRXBQ-MG!39B74E34DC46
Cylance	Unsafe
VIPRE	Gen:Variant.MSILPerseus.1689
Sangfor	Suspicious.Win32.Save.a
K7AntiVirus	Trojan ( 004b92f41 )
K7GW	Trojan ( 004b92f41 )
Cybereason	malicious.4dc460
Elastic	malicious (high confidence)
ESET-NOD32	a variant of MSIL/Injector.CKR
APEX	Malicious
ClamAV	Win.Packed.Lynx-6899009-0
Kaspersky	HEUR:Trojan.MSIL.Agent.gen
BitDefender	Gen:Variant.MSILPerseus.1689
NANO-Antivirus	Trojan.Win32.Dwn.eklhvn
MicroWorld-eScan	Gen:Variant.MSILPerseus.1689
Avast	Win32:RATX-gen [Trj]
Ad-Aware	Gen:Variant.MSILPerseus.1689
Emsisoft	Trojan.Injector (A)
DrWeb	Trojan.DownLoader22.12097
McAfee-GW-Edition	GenericRXBQ-MG!39B74E34DC46
Sophos	ML/PE-A + Mal/MSILInj-AM
Ikarus	Trojan.MSIL.Crypt
GData	Gen:Variant.MSILPerseus.1689
Avira	TR/Dropper.Gen
Arcabit	Trojan.MSILPerseus.D699
Microsoft	Trojan:Win32/Sabsik.TE.B!ml
Google	Detected
AhnLab-V3	Malware/Win32.RL_Generic.C3606712
Acronis	suspicious
ALYac	Gen:Variant.MSILPerseus.1689
MAX	malware (ai score=82)
Malwarebytes	Malware.AI.1409158143
Rising	Trojan.Generic/MSIL@AI.100 (RDM.MSIL:Wucaruen14NcWfSKPWZOyg)
SentinelOne	Static AI – Malicious PE
Fortinet	MSIL/Injector.BFO!tr
BitDefenderTheta	Gen:NN.ZemsilF.34592.Fm0@aa7u3lk
AVG	Win32:RATX-gen [Trj]
CrowdStrike	win/malicious_confidence_100% (D)

How to remove Malware.AI.1409158143?

Malware.AI.1409158143 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X