What is "Malware.AI.1526770693"?

The Malware.AI.1526770693 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Malware.AI.1526770693 virus can do?

Executable code extraction
Creates RWX memory
Repeatedly searches for a not-found process, may want to run with startbrowser=1 option
Drops a binary and executes it
A scripting utility was executed
Uses Windows utilities for basic functionality
Attempts to stop active services
Creates a copy of itself
Anomalous binary characteristics

Related domains:

z.whorecord.xyz

a.tomx.xyz

How to determine Malware.AI.1526770693?


File Info:
crc32: CFF9A1E4
md5: ef22608568722a79aa5c23f4c4aeb348
name: EF22608568722A79AA5C23F4C4AEB348.mlw
sha1: 0c4b54ef3af64c5da365f8e4ed583ecd1cbc3163
sha256: 1e0d6f899528b82009bf4415ea22646ced45b49fb429bf4f88237631d63488ae
sha512: f69404c68f4c08dc0e229f326555b1d81f5e02cbecd78e0e267779e992b851da41a29da82db3f21e9e55e5991038ce7319273baf5e28e099963eb8d38e04e64a
ssdeep: 6144:BcfLrZxJN8qNH9LWpKNkX0NlUFyjwbu5p9VHZ+jziJww1JoM:ENrH9hk5Fyjbp75luk
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:
LegalCopyright: Xanif. All rights reserved. 2017
InternalName: Xanifer
FileVersion: 1.0.0.6
CompanyName: Xanif Ltd.
ProductName: Xanifxae Inform
ProductVersion: 1.0.0.6
FileDescription: Xanif Ltd. Gui application
OriginalFilename: Xanif
Translation: 0x0409 0x04b1

Malware.AI.1526770693 also known as:

Bkav	W32.AIDetect.malware2
K7AntiVirus	Trojan ( 005380d91 )
Elastic	malicious (high confidence)
DrWeb	Trojan.Trick.46147
MicroWorld-eScan	Gen:Variant.Graftor.503710
ALYac	Gen:Variant.Graftor.503710
Cylance	Unsafe
Zillya	Trojan.Kryptik.Win32.1465004
CrowdStrike	win/malicious_confidence_100% (D)
Alibaba	Trojan:Win32/MereTam.ali2000008
K7GW	Trojan ( 005380d91 )
Cybereason	malicious.568722
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win32/Kryptik.GJAZ
APEX	Malicious
Avast	Win32:Malware-gen
Cynet	Malicious (score: 99)
Kaspersky	HEUR:Trojan.Win32.Generic
BitDefender	Gen:Variant.Graftor.503710
NANO-Antivirus	Trojan.Win32.Inject.ffpwrl
Tencent	Malware.Win32.Gencirc.10cb1834
Ad-Aware	Gen:Variant.Graftor.503710
Sophos	Mal/Generic-R + Mal/EncPk-ANZ
Comodo	Malware@#1w8cf6ibu081g
BitDefenderTheta	Gen:NN.ZexaF.34266.Eq0@a0lFMZei
TrendMicro	TrojanSpy.Win32.TRICKBOT.SMB
McAfee-GW-Edition	Trojan-FPOJ!EF2260856872
FireEye	Generic.mg.ef22608568722a79
Emsisoft	Gen:Variant.Graftor.503710 (B)
SentinelOne	Static AI – Malicious PE
Jiangmin	Trojan.Inject.aozj
Webroot	Trojan.Spy.Trickbot
Avira	TR/Crypt.XPACK.Gen
Antiy-AVL	Trojan/Generic.ASMalwS.270D6A1
Microsoft	Trojan:Win32/MereTam.A
Arcabit	Trojan.Graftor.D7AF9E
GData	Gen:Variant.Graftor.503710
TACHYON	Trojan/W32.Inject.503808.W
AhnLab-V3	Malware/Win32.Generic.C2651489
McAfee	Trojan-FPOJ!EF2260856872
MAX	malware (ai score=100)
VBA32	BScope.Trojan.Inject
Malwarebytes	Malware.AI.1526770693
Panda	Trj/Genetic.gen
TrendMicro-HouseCall	TrojanSpy.Win32.TRICKBOT.SMB
Rising	Trojan.Generic@ML.100 (RDML:5tjK88ljTtFKjLsJNTOTIg)
Yandex	Trojan.GenAsa!uMtxarIoLew
Ikarus	Trojan.Win32.Crypt
Fortinet	W32/GenKryptik.CFOA!tr
AVG	Win32:Malware-gen
Paloalto	generic.ml

How to remove Malware.AI.1526770693?

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

What is “Malware.AI.1526770693”?