Malware

How to remove “Malware.AI.1509856283”?

Malware Removal

The Malware.AI.1509856283 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.1509856283 virus can do?

  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • Creates RWX memory
  • Guard pages use detected – possible anti-debugging.
  • Dynamic (imported) function loading detected
  • Performs HTTP requests potentially not found in PCAP.
  • CAPE extracted potentially suspicious content
  • Authenticode signature is invalid
  • Collects and encrypts information about the computer likely to send to C2 server
  • Attempts to modify proxy settings
  • Harvests cookies for information gathering

How to determine Malware.AI.1509856283?



File Info:

name: 32CD1667949816637422.mlw
path: /opt/CAPEv2/storage/binaries/edd8a2b894896f4469a859c9c1953ec99006c84da7bdefd94ddc7210e9d7859d
crc32: 31B177EC
md5: 32cd16679498166374229e6bdf0b95d0
sha1: b8ad4cd41afcf9ea98805d6f4caee10ff122c4a3
sha256: edd8a2b894896f4469a859c9c1953ec99006c84da7bdefd94ddc7210e9d7859d
sha512: 0716ab7f586c6a43d7873a87d804bc7dbe0ba03d088323721466530fb2289b1c3104419294c16865c2c09738a5cc614f61e3a2988b878e530729c74db4749db5
ssdeep: 6144:OrWfn2pZP9FuZrGQ+YwQcHdmi292Uz9rDSiyGtSV41QJDsTDD5a3N7vEGjbl/9vJ:8Wf2pB9FukSwCuipS4Ys4V99J
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1EAF49DC0669BC522C1790779D4A292F04B3CBC17E926CB0B79BC7DD93F327612268A57
sha3_384: ce536fae024e7f5b0316770ff1b99caccddc2cf4c0e36cac5a264431a700c81fa9539ac26ac5f3c6604318f846002d4c
ep_bytes: ff2500204000c46b361bd7cd47765763
timestamp: 2021-11-24 15:36:31


Version Info:

Translation: 0x0000 0x04b0
Comments: 
CompanyName: 
FileDescription: Launcher
FileVersion: 1.0.0.0
InternalName: Launcher.exe
LegalCopyright: Copyright ©  2019
LegalTrademarks: 
OriginalFilename: Launcher.exe
ProductName: Launcher
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

Malware.AI.1509856283 also known as:

LionicTrojan.Win32.Bulz.4!c
MicroWorld-eScanGen:Variant.Bulz.194854
FireEyeGen:Variant.Bulz.194854
McAfeeRDN/Generic.com
CylanceUnsafe
Cybereasonmalicious.794981
TrendMicro-HouseCallTROJ_GEN.R002H09KP21
Paloaltogeneric.ml
BitDefenderGen:Variant.Bulz.194854
Ad-AwareGen:Variant.Bulz.194854
McAfee-GW-EditionRDN/Generic.com
EmsisoftGen:Variant.Bulz.194854 (B)
MicrosoftTrojan:Win32/Sabsik.FL.B!ml
ArcabitTrojan.Bulz.D2F926
GDataGen:Variant.Bulz.194854
ALYacGen:Variant.Bulz.194854
MAXmalware (ai score=87)
MalwarebytesMalware.AI.1509856283
APEXMalicious
FortinetPossibleThreat
MaxSecureTrojan.Malware.300983.susgen

How to remove Malware.AI.1509856283?

Malware.AI.1509856283 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment