Should I remove “Malware.AI.1638953781”?

The Malware.AI.1638953781 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.1638953781 virus can do?

The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid

How to determine Malware.AI.1638953781?


File Info:
name: 22B4F2D25F3A822432A5.mlw
path: /opt/CAPEv2/storage/binaries/16e5dc67c70c74a6dfc8f85bc5851ca6a72da88dd78d23a8730b9623016b594e
crc32: 6D9274E6
md5: 22b4f2d25f3a822432a563edf37200ba
sha1: 5698b8cafe74f22a05e0b4228bbb0e8ece5399a6
sha256: 16e5dc67c70c74a6dfc8f85bc5851ca6a72da88dd78d23a8730b9623016b594e
sha512: 7a44846a04f819df28311e89701a16d2c8776254daba25f1ba64eef599d7950b3276d2e40783b1d6b0a64f8b97c91fd96358092cd6a7678751cb53a69c684473
ssdeep: 768:QLjGqun0ARTYEfk+QqOKhJhfiG6B4Dr6:QLjNS0mvvQqFfhfy
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T1DE030801B180C03BF8EA01BFDEFE4CB5496CDD341B6951E7A1D740A92B515DB6036B9B
sha3_384: 33dee250c2e03eb4e35c03330d18d2b29fa960f6db74a37fddfd72c9be34c4dd52402b73ee7808faf1131b5310028594
ep_bytes: e948130000e958420000e9ce1b0000e9
timestamp: 2022-04-24 15:47:27

Version Info:
0: [No Data]

Malware.AI.1638953781 also known as:

CyrenCloud	W32/Fugrafa.Z.gen!Eldorado
Bkav	W32.AIDetectMalware
Lionic	Trojan.Win32.Generic.4!c
Elastic	malicious (high confidence)
FireEye	Generic.mg.22b4f2d25f3a8224
Skyhigh	BehavesLike.Win32.Generic.pt
Malwarebytes	Malware.AI.1638953781
Sangfor	Trojan.Win32.Agent.Vz3o
SentinelOne	Static AI – Suspicious PE
Varist	W32/Fugrafa.Z.gen!Eldorado
Antiy-AVL	Trojan/Win32.PossibleThreat
ViRobot	Trojan.Win32.Z.Wacatac.40960.LI
GData	Win32.Trojan.PSE.13CL3EN
Cynet	Malicious (score: 100)
AhnLab-V3	Malware/Win.Generic.C5142171
McAfee	RDN/Generic.dx
TrendMicro-HouseCall	TROJ_GEN.R002H06L523
Rising	Trojan.Generic@AI.100 (RDML:H3eNbGdjOuLhOmZ0FqziHQ)
Ikarus	Trojan.Win32.Agent
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	W32/PossibleThreat
DeepInstinct	MALICIOUS
CrowdStrike	win/malicious_confidence_70% (W)

How to remove Malware.AI.1638953781?

Malware.AI.1638953781 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X