Malware

Malware.AI.1464716303 information

Malware Removal

The Malware.AI.1464716303 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.1464716303 virus can do?

  • A file was accessed within the Public folder.
  • Sample contains Overlay data
  • Uses Windows utilities for basic functionality
  • CAPE extracted potentially suspicious content
  • Authenticode signature is invalid
  • Anomalous .NET characteristics
  • Compiles .NET code into an executable and executes it
  • Deletes executed files from disk
  • Touches a file containing cookies, possibly for information gathering
  • Uses csc.exe C# compiler to build and execute code
  • Uses suspicious command line tools or Windows utilities

How to determine Malware.AI.1464716303?



File Info:

name: 828F1B96F9D32725569B.mlw
path: /opt/CAPEv2/storage/binaries/357cb0e93945969f62151b6b992d37ccd90f0422137f2e18a195c634a0a5fc47
crc32: E6D43017
md5: 828f1b96f9d32725569b32e33458e3b5
sha1: a50f6a442aafca601cd022322ac4149e3691e27d
sha256: 357cb0e93945969f62151b6b992d37ccd90f0422137f2e18a195c634a0a5fc47
sha512: 9e66bf96ff3b7ad099bf827466d210d330edacb48a6f54e091d60f933cf231419ed8c3159412a76a30c1ccb1fcb914d140e37838fbac30d612e8a73fbf405305
ssdeep: 12288:OAFBChs33Vsj6ZM0joTS7UyyUuI2VInGr6lv91UxGf7jxEiGPGajw5zYPWvnJE3c:xFBChs33Vsj6ZM0joTS7UyyUuI2VInGU
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T181D4B2EC91C9275DE0F9DF76BA596E8C0C8FE9762E12B86455D802030726C46FFB0972
sha3_384: c7559de3e87ab45505b25bae71eabf7585a1c14a4b0d1132df5e853c22527f92037b044bd80e8b61953b1e6d3af184de
ep_bytes: ff250020400000000000000000000000
timestamp: 2020-03-27 22:46:50


Version Info:

Translation: 0x0000 0x04b0
FileDescription:  
FileVersion: 0.0.0.0
InternalName: x1603y.exe
LegalCopyright:  
OriginalFilename: x1603y.exe
ProductVersion: 0.0.0.0
Assembly Version: 0.0.0.0

Malware.AI.1464716303 also known as:

BkavW32.AIDetectMalware.CS
LionicVirus.MSIL.Lamer.n!c
Elasticmalicious (high confidence)
MicroWorld-eScanTrojan.GenericKDZ.94670
FireEyeGeneric.mg.828f1b96f9d32725
CAT-QuickHealW32.Lamer.M3
SkyhighBehavesLike.Win32.Generic.jt
McAfeeGenericRXAO-XB!828F1B96F9D3
Cylanceunsafe
ZillyaTrojan.RibajGen.Win32.1
SangforSuspicious.Win32.Save.a
K7AntiVirusTrojan ( 00544e311 )
K7GWTrojan ( 00544e311 )
CrowdStrikewin/malicious_confidence_100% (W)
BitDefenderThetaGen:NN.ZemsilF.36744.Mm3@a84Eali
SymantecML.Attribute.HighConfidence
tehtrisGeneric.Malware
ESET-NOD32a variant of MSIL/Ribaj.D
APEXMalicious
CynetMalicious (score: 100)
KasperskyHEUR:Virus.MSIL.Lamer.gen
BitDefenderTrojan.GenericKDZ.94670
NANO-AntivirusTrojan.Win32.Kazy.elhoip
AvastWin32:MalwareX-gen [Trj]
RisingTrojan.Ribaj!1.B577 (CLASSIC)
SophosMSIL/Ribaj-A
F-SecureTrojan.TR/Dropper.Gen
DrWebMSIL.Cola.1
VIPRETrojan.GenericKDZ.94670
TrendMicroVirus.MSIL.RIBAJ.SMW
Trapminemalicious.moderate.ml.score
EmsisoftTrojan.GenericKDZ.94670 (B)
IkarusVirus.MSIL.CryptInject
JiangminVirus.MSIL.Lamer.a
VaristW32/Ribaj.C.gen!Eldorado
AviraTR/Dropper.Gen
MAXmalware (ai score=88)
Antiy-AVLTrojan/MSIL.Ribaj.a
Kingsoftmalware.kb.c.1000
XcitiumVirus.MSIL.Ribaj.F@7oybry
ArcabitTrojan.Generic.D171CE
ZoneAlarmHEUR:Virus.MSIL.Lamer.gen
GDataMSIL.Virus.Ribaj.B
GoogleDetected
AhnLab-V3Win32/Ribaj.X1979
VBA32Virus.MSIL.Lamer.1
ALYacTrojan.GenericKDZ.94670
TACHYONWorm/W32.MSILamer
MalwarebytesMalware.AI.1464716303
PandaTrj/CI.A
TrendMicro-HouseCallVirus.MSIL.RIBAJ.SMW
TencentMsil.Virus.Ribaj.Ddhl
YandexTrojan.Agent!A5qzeRd3nZ0
SentinelOneStatic AI – Malicious PE
MaxSecureTrojan.GenericKDZ.51306
FortinetMSIL/Ribaj.D
AVGWin32:MalwareX-gen [Trj]
Cybereasonmalicious.42aafc
DeepInstinctMALICIOUS

How to remove Malware.AI.1464716303?

Malware.AI.1464716303 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment