Malware.AI.1623328249 removal guide

The Malware.AI.1623328249 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.1623328249 virus can do?

Sample contains Overlay data
Authenticode signature is invalid

How to determine Malware.AI.1623328249?


File Info:
name: 3DE4F6684FB72894D261.mlw
path: /opt/CAPEv2/storage/binaries/41371c6ff19e0926edbe8c8033dc767bc6bd510441319c4621ef9606c5f116c6
crc32: C397886D
md5: 3de4f6684fb72894d2613ef605e19871
sha1: 3fea96bcebf905bdf527a241828d8f08ddf9e6bc
sha256: 41371c6ff19e0926edbe8c8033dc767bc6bd510441319c4621ef9606c5f116c6
sha512: 3c093bcd8d6a390ea337b80eba4d6621dbab2ccb076197bf312933ad0505f21c7fdbcc92e3e4f4cdcfa324b3b75029776c3e862b328cdc83cf3220e99dc526e3
ssdeep: 6144:q1+5wCBuDD0QHmBv4Oh1qD2iFluIKNOwKHrAORWiC4ta:q1jCBcjHmBv4Oh16XCIjwKHrbxLa
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T159349E1174E2C873D972153048E8EB755A7EBD300A21DA7BA7E40B7E9F70282C535AB7
sha3_384: 79e881f419adfc3151457916a947b1d2813b9579c54330adfb3de0b51fd6331e7232aade4ee729fa487a2775daaf4e08
ep_bytes: e8e8040000e97afeffff558bec56ff75
timestamp: 2022-06-30 17:45:23

Version Info:
0: [No Data]

Malware.AI.1623328249 also known as:

Bkav	W32.AIDetect.malware1
tehtris	Generic.Malware
MicroWorld-eScan	Gen:Variant.Fragtor.105461
ClamAV	Win.Malware.Lethic-6995163-0
FireEye	Generic.mg.3de4f6684fb72894
ALYac	Gen:Variant.Fragtor.105461
Cylance	Unsafe
Zillya	Downloader.Satacom.Win32.272
Sangfor	Trojan.Win32.Save.a
CrowdStrike	win/malicious_confidence_90% (W)
K7GW	Trojan-Downloader ( 0058beee1 )
K7AntiVirus	Trojan ( 004c77f41 )
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (high confidence)
ESET-NOD32	a variant of Win32/Kryptik.DCD
APEX	Malicious
Cynet	Malicious (score: 100)
Kaspersky	HEUR:Trojan.Win32.Khalesi.gen
BitDefender	Gen:Variant.Fragtor.105461
NANO-Antivirus	Trojan.Win32.Satacom.jrfury
Avast	Win32:PWSX-gen [Trj]
Tencent	Win32.Trojan.Hijacker.Vmhl
Ad-Aware	Gen:Variant.Fragtor.105461
Emsisoft	Gen:Variant.Fragtor.105461 (B)
F-Secure	Trojan.TR/Hijacker.Gen
DrWeb	Trojan.DownLoader45.9987
VIPRE	Gen:Variant.Fragtor.105461
TrendMicro	TROJ_GEN.R007C0RI122
McAfee-GW-Edition	BehavesLike.Win32.CoinMiner.dh
Trapmine	malicious.moderate.ml.score
Sophos	Mal/Generic-R + Mal/Behav-010
SentinelOne	Static AI – Malicious PE
GData	Gen:Variant.Fragtor.105461
Jiangmin	Trojan.Khalesi.amng
Avira	TR/Hijacker.Gen
MAX	malware (ai score=88)
Antiy-AVL	Trojan[Downloader]/Win32.Satacom
Arcabit	Trojan.Fragtor.D19BF5
ZoneAlarm	HEUR:Trojan.Win32.Khalesi.gen
Microsoft	Trojan:Win32/Sabsik.FL.B!ml
Google	Detected
AhnLab-V3	Dropper/Win.Generic.C5179390
McAfee	Artemis!3DE4F6684FB7
TACHYON	Trojan-Downloader/W32.Satacom.237568
Malwarebytes	Malware.AI.1623328249
TrendMicro-HouseCall	TROJ_GEN.R007C0RI122
Rising	Trojan.AntiVM!1.67DF (CLASSIC)
Ikarus	Trojan.Win32.Tinukebot
BitDefenderTheta	Gen:NN.ZexaF.34606.oqX@a0nvj3
AVG	Win32:PWSX-gen [Trj]
Cybereason	malicious.cebf90

How to remove Malware.AI.1623328249?

Malware.AI.1623328249 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X