How to remove “Malware.AI.1499696457”?

The Malware.AI.1499696457 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.1499696457 virus can do?

CAPE extracted potentially suspicious content
The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid
Anomalous .NET characteristics

How to determine Malware.AI.1499696457?


File Info:
name: 84B8297C4C07B68AE0C1.mlw
path: /opt/CAPEv2/storage/binaries/8f6c3250b8e57904ee3367627b54a9300ecbf4dfd563b8686b2714a81ee896ff
crc32: 28411CD2
md5: 84b8297c4c07b68ae0c17b34644ca98d
sha1: 7b95c7592e864ce0e5b9f0efabf6bb5e233a5e7c
sha256: 8f6c3250b8e57904ee3367627b54a9300ecbf4dfd563b8686b2714a81ee896ff
sha512: b9bfa726c43d3284e5a75cfac770f8b9bc9729a04d898d54df22630f7af70e56812aafef6b1cc1e36c63952dd55e98880b7ff68912a224fc20ad1e2ce0b7b63c
ssdeep: 3072:GN/6g50aRUlINPmsWwM3tbHPrCq6qbw/g:Gv0hoP+9zPrsI
type: PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
tlsh: T13DE3CEB9467AF830D7CA42FA18B72B926B741FA35779C011FADF2C552141A1DF383A48
sha3_384: a03b0dfe8e55152ccf88c2a6bbe845a465d29eab4644328164f985a9b43f7f157fc61a607930203fa09c75b51e5b0f58
ep_bytes: ff250020001000000000000000000000
timestamp: 2021-06-02 19:26:37

Version Info:
Translation: 0x0000 0x04b0
FileDescription:  
FileVersion: 0.0.0.0
InternalName: cryktgsEHapi.dll
LegalCopyright:  
OriginalFilename: cryktgsEHapi.dll
ProductVersion: 0.0.0.0
Assembly Version: 0.0.0.0

Malware.AI.1499696457 also known as:

Bkav	W32.AIDetectMalware.CS
Elastic	malicious (high confidence)
MicroWorld-eScan	Gen:Variant.MSILHeracles.43175
Skyhigh	BehavesLike.Win32.Generic.cm
Malwarebytes	Malware.AI.1499696457
VIPRE	Gen:Variant.MSILHeracles.43175
Sangfor	Suspicious.Win32.Save.a
CrowdStrike	win/malicious_confidence_100% (W)
Arcabit	Trojan.MSILHeracles.DA8A7
Symantec	Trojan.Gen.MBT
ESET-NOD32	a variant of MSIL/Agent.VRS
Cynet	Malicious (score: 100)
APEX	Malicious
ClamAV	Win.Trojan.Agent-9967677-1
Kaspersky	HEUR:Trojan.MSIL.Kryptik.gen
BitDefender	Gen:Variant.MSILHeracles.43175
Avast	Win32:MalwareX-gen [Trj]
Emsisoft	Gen:Variant.MSILHeracles.43175 (B)
F-Secure	Heuristic.HEUR/AGEN.1301100
SentinelOne	Static AI – Malicious PE
Varist	W32/MSIL_Agent.GJT.gen!Eldorado
Avira	HEUR/AGEN.1301100
ZoneAlarm	HEUR:Trojan.MSIL.Kryptik.gen
GData	Gen:Variant.MSILHeracles.43175
Google	Detected
AhnLab-V3	Trojan/Win.Generic.C5556257
Fortinet	MSIL/Agent.UUL!tr
AVG	Win32:MalwareX-gen [Trj]
DeepInstinct	MALICIOUS

How to remove Malware.AI.1499696457?

Malware.AI.1499696457 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X