Malware

Malware.AI.1551169427 removal guide

Malware Removal

The Malware.AI.1551169427 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.1551169427 virus can do?

  • Sample contains Overlay data
  • Uses Windows utilities for basic functionality
  • Reads data out of its own binary image
  • Drops a binary and executes it
  • Creates an autorun.inf file
  • Authenticode signature is invalid
  • Creates a copy of itself
  • Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine Malware.AI.1551169427?



File Info:

name: C1905461F43671089EB7.mlw
path: /opt/CAPEv2/storage/binaries/c81904bd1a70ac2d1b6be628d267755e5e31f34e2f94dd7e427d5159e670337a
crc32: 17A22F86
md5: c1905461f43671089eb7184220c03000
sha1: 43fcab072518eede0a11892a0632e9f2f460e7c5
sha256: c81904bd1a70ac2d1b6be628d267755e5e31f34e2f94dd7e427d5159e670337a
sha512: ffc4a0c82c15f5c4dfd43a56d5ed8de88e1e2c1c3a0fcf0af58575a63d9b2d19b06e1e473da6523508d4f4a92ffa3638d5ba8e1d5da1f74fe8f27776c95efcfc
ssdeep: 12288:6hkDgouVA2nxKkoovdRgQriDwOIqmxiZnYQE7PJcd4aviYhw0sGx:6RmJkzoQricOI5xiZY17aq29
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T11C157D51F2C98076D1A365B28DBBFE36913B263D5625815723CC3A326FF2342152EF26
sha3_384: 80def8e30decc09ebe322f1cb57e255ff6963dcec2dc2ff9b0029f5e5b0ae2eeb26ebb76ef02423a0dfc4c005ff1f218
ep_bytes: e816900000e989feffffcccccccccc55
timestamp: 2012-01-29 21:32:28


Version Info:

CompanyName: sexy
Comments: hot
FileDescription: fuckyou
FileVersion: 5.7.8.2
InternalName: 3lazobe
Translation: 0x0809 0x04b0

Malware.AI.1551169427 also known as:

BkavW32.AIDetectMalware
LionicTrojan.Win32.Generic.4!c
DrWebWin32.HLLW.Siggen.5600
MicroWorld-eScanGen:Trojan.Heur.AutoIT.112
FireEyeGeneric.mg.c1905461f4367108
McAfeeAutorun.worm!C1905461F436
MalwarebytesMalware.AI.1551169427
SangforTrojan.Win32.Save.a
K7AntiVirusTrojan ( 700000111 )
AlibabaWorm:Script/Autorun.ba64f293
K7GWTrojan ( 700000111 )
CrowdStrikewin/malicious_confidence_100% (W)
BitDefenderThetaAI:Packer.50A5A6511A
SymantecML.Attribute.HighConfidence
Elasticmalicious (high confidence)
ESET-NOD32a variant of Win32/Autoit.PB
APEXMalicious
CynetMalicious (score: 99)
KasperskyHEUR:Worm.Script.Generic
BitDefenderGen:Trojan.Heur.AutoIT.112
NANO-AntivirusTrojan.Win32.TrjGen.dugwbj
AvastWin32:Evo-gen [Trj]
TencentWin32.Trojan.Generic.Czlw
EmsisoftGen:Trojan.Heur.AutoIT.112 (B)
F-SecureTrojan.TR/Patched.Ren.Gen
VIPREGen:Trojan.Heur.AutoIT.112
McAfee-GW-EditionBehavesLike.Win32.PWSZbot.ch
Trapminemalicious.moderate.ml.score
SophosMal/Generic-R
SentinelOneStatic AI – Malicious PE
GDataGen:Trojan.Heur.AutoIT.112
JiangminTrojan/Agent.hqbq
AviraTR/Patched.Ren.Gen
MAXmalware (ai score=100)
XcitiumMalware@#t8afm8nun4b8
ArcabitTrojan.Heur.AutoIT.112
ZoneAlarmHEUR:Trojan.Win32.Generic
MicrosoftWorm:Win32/Jenxcus.A
GoogleDetected
AhnLab-V3Downloader/Win32.Agent.C489250
VBA32TrojanDropper.FrauDrop
ALYacGen:Trojan.Heur.AutoIT.112
Cylanceunsafe
PandaTrj/Chgt.O
RisingTrojan.Generic@AI.100 (RDML:vwXImXgzyQVxdv2HqMSQBw)
IkarusTrojan.Autoit
MaxSecureTrojan.Autoit.AZA
FortinetW32/Generic.FNN!tr
AVGWin32:Evo-gen [Trj]
Cybereasonmalicious.72518e
DeepInstinctMALICIOUS

How to remove Malware.AI.1551169427?

Malware.AI.1551169427 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment