Malware

About “Malware.AI.1641529173” infection

Malware Removal

The Malware.AI.1641529173 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware - Review 2020

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
6-day free trial available.

What Malware.AI.1641529173 virus can do?

  • Reads data out of its own binary image
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX
  • Network activity detected but not expressed in API logs

Related domains:

z.whorecord.xyz
a.tomx.xyz

How to determine Malware.AI.1641529173?


File Info:

crc32: 2C692173
md5: 0722046f9f0f181d2922218b19b193ab
name: 0722046F9F0F181D2922218B19B193AB.mlw
sha1: 385ac7b1e7ca95c7d25df6c6b1a5ed2e20180199
sha256: 236a886c60897201062ee4078acbbd6c1bc37c64e76bf5c24fdc5357c5ee3385
sha512: 3e5c8005c7473efb2ffae5fc919d46a5499c9d536c16bbb7f75940bfd767a7f67e4346e9e13e327744f7863b329c888d6f62135eea395cdb57e95c5226a69a2d
ssdeep: 24576:Clh1fvdVY9pXXQIak2hyDNY5fVO5np68OJK+iapLarR1dJb8Bn:ydVYPXJ1DNAfka8OU+i6LadF
type: PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed

Version Info:

LegalCopyright:
InternalName: Battleye Full Bypass.exe
FileVersion: 1.0.0.0
CompanyName: 0N1K4G3
ProductName: Battleye Full Bypass
ProductVersion: 1.0.0.0
FileDescription:
OriginalFilename: Battleye Full Bypass.exe
Translation: 0x0809 0x04b0

Malware.AI.1641529173 also known as:

BkavW32.AIDetect.malware2
K7AntiVirusRiskware ( 0040eff71 )
LionicTrojan.Win32.Generic.4!c
DrWebTrojan.Packed2.43189
ClamAVWin.Malware.Dabw-7609398-0
CylanceUnsafe
K7GWRiskware ( 0040eff71 )
ESET-NOD32a variant of Win32/Packed.AutoIt.TO
APEXMalicious
CynetMalicious (score: 100)
AlibabaPacked:Win32/Krypter.7797ac41
ViRobotTrojan.Win32.Agent.1789440[UPX]
SophosMal/Generic-S + Mal/AuItInj-C
BitDefenderThetaGen:NN.ZexaF.34294.xnKfaGH9ldei
VIPRETrojan.Win32.Generic!BT
McAfee-GW-EditionBehavesLike.Win32.Sality.tc
SentinelOneStatic AI – Malicious PE
JiangminTrojan/Blocker.idi
eGambitUnsafe.AI_Score_76%
MicrosoftRansom:Win32/StopCrypt!ml
Acronissuspicious
McAfeeArtemis!0722046F9F0F
VBA32TrojanDownloader.Agent
MalwarebytesMalware.AI.1641529173
IkarusTrojan.Krypter
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/Generic.AC.35B9E4!tr
Paloaltogeneric.ml

How to remove Malware.AI.1641529173?

Malware.AI.1641529173 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment