Malware.AI.1495418900 malicious file

The Malware.AI.1495418900 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.1495418900 virus can do?

Executable code extraction
Creates RWX memory
Reads data out of its own binary image
Drops a binary and executes it
Network activity detected but not expressed in API logs

How to determine Malware.AI.1495418900?


File Info:
crc32: 5E9C813C
md5: 4b84685ad8268693007e619e046d0388
name: 4B84685AD8268693007E619E046D0388.mlw
sha1: 2c09e30acca0b7388d3374e366e98278b6ef500b
sha256: 562e6fa3634affdb9ba9cdba9b03d96fdaa2a68b7bded671838b967938f0f316
sha512: 19ce66f602df435467276d27278e59affeb86cd1bcb182562d4fb50634181ca7f45cb78829d8351c0d4566c84cdc7a3049c75a65356e0af0eea922e8d2bfc5a3
ssdeep: 12288:4yIFwWIz23sUZbDIAc8fQH/OOC7d0BRVvG9C+ZO:4yIuFz2LZb9OxMuBRUq
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:
LegalCopyright:                                                                                                     
FileVersion:                     
CompanyName:                                                             
Comments: This installation was built with Inno Setup.
ProductName: TweakMASTER                                                 
ProductVersion: 3.60                                              
FileDescription: TweakMASTER Setup                                           
Translation: 0x0000 0x04b0

Malware.AI.1495418900 also known as:

Bkav	W32.AIDetect.malware2
K7AntiVirus	Trojan ( 005408741 )
Cynet	Malicious (score: 99)
ALYac	Trojan.Brsecmon.1
Cylance	Unsafe
Zillya	Trojan.Crypt.Win32.48048
CrowdStrike	win/malicious_confidence_100% (W)
Alibaba	Trojan:Win32/GandCrab.d7d91132
K7GW	Trojan ( 005408741 )
Cybereason	malicious.ad8268
Cyren	W32/S-685a9636!Eldorado
Symantec	Trojan.Gen.2
ESET-NOD32	a variant of Win32/Kryptik.GMJF
APEX	Malicious
Avast	Win32:MalwareX-gen [Trj]
Kaspersky	Trojan.Win32.Crypt.exx
BitDefender	Trojan.Brsecmon.1
NANO-Antivirus	Trojan.Win32.Crypt.fkqsju
MicroWorld-eScan	Trojan.Brsecmon.1
Tencent	Win32.Trojan.Crypt.Pezs
Sophos	Mal/Generic-R
Comodo	Malware@#2fx2zwqkmigj5
BitDefenderTheta	Gen:NN.ZexaF.34738.qu0@aG4fNCgG
McAfee-GW-Edition	BehavesLike.Win32.AdwareFileTour.gc
FireEye	Trojan.Brsecmon.1
Emsisoft	Trojan.Brsecmon.1 (B)
Webroot	W32.Adware.Installcore
Avira	TR/Crypt.Agent.zkvtv
Microsoft	Ransom:Win32/GandCrab!rfn
GData	Trojan.Brsecmon.1
McAfee	Generic.dzs
MAX	malware (ai score=86)
Malwarebytes	Malware.AI.1495418900
Panda	Trj/CI.A
Rising	Malware.Heuristic!ET#100% (RDMK:cmRtazp/i54ol9ykvtQR+sGBssxN)
Ikarus	Trojan.Win32.Crypt
Fortinet	W32/Kryptik.GMNQ!tr
AVG	Win32:MalwareX-gen [Trj]
Paloalto	generic.ml

How to remove Malware.AI.1495418900?

Malware.AI.1495418900 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X