Malware.AI.1642945276 removal guide

The Malware.AI.1642945276 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.1642945276 virus can do?

The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid
Binary compilation timestomping detected

How to determine Malware.AI.1642945276?


File Info:
name: 11D6C00506F053EF8FFA.mlw
path: /opt/CAPEv2/storage/binaries/b9d436a77da01d167fd3e91ec253a125e6b4f53a39bfbd9c37fd4bc9552c7e36
crc32: CAF60554
md5: 11d6c00506f053ef8ffa3082da9b58ae
sha1: 8d8d4b76bb799daaf687a2263b5830f05ad0c0aa
sha256: b9d436a77da01d167fd3e91ec253a125e6b4f53a39bfbd9c37fd4bc9552c7e36
sha512: ca43d241db488f0c439e7093bf314fbea33d46861c990cf2fd4e14c3bd32f76c6943e282477d7f5bb7b9683327689c3296492ff69486e9bb2f4deaf5642d518b
ssdeep: 6144:/d9A4uiyrxEW8fXu/7+QxDiM5snMvB0EmKLZPDvOBpqgOM6m:/DHNyrVz7hf3bvOBpX6m
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1E1A46B2077FC8722E1BE2777D0B9191547F5F852A1FAE74E2894A9EA0C437417E203A7
sha3_384: 77e1ad2e50d6b6e581b1442b77daf7ef64fdbad58bff1f99b7c93684f297dea35a7101d1922007fa36315cf9887afa05
ep_bytes: 
timestamp: 2082-04-23 10:58:16

Version Info:
0: [No Data]

Malware.AI.1642945276 also known as:

DrWeb	Adware.WizzMonetize.1
MicroWorld-eScan	Application.Bundler.Temonde.IR
FireEye	Generic.mg.11d6c00506f053ef
Cybereason	malicious.6bb799
APEX	Malicious
Paloalto	generic.ml
Cynet	Malicious (score: 100)
Sophos	Generic ML PUA (PUA)
Comodo	Heur.Corrupt.PE@1z141z3
SentinelOne	Static AI – Malicious PE
Microsoft	Trojan:Win32/Sabsik.FL.B!ml
VBA32	TScope.Trojan.MSIL
ALYac	Application.Bundler.Temonde.IR
Malwarebytes	Malware.AI.1642945276
CrowdStrike	win/malicious_confidence_70% (W)

How to remove Malware.AI.1642945276?

Malware.AI.1642945276 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X