Malware

Malware.AI.1660977584 removal

Malware Removal

The Malware.AI.1660977584 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.1660977584 virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • CAPE extracted potentially suspicious content
  • Unconventionial binary language: Chinese (Simplified)
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • Anomalous binary characteristics

How to determine Malware.AI.1660977584?



File Info:

name: F88BEB5E3977D1494A85.mlw
path: /opt/CAPEv2/storage/binaries/ae2443ba0c754956c8b132cf997f7780f74d5ca3ec879ff749b426bd77be6cf5
crc32: BD4464AC
md5: f88beb5e3977d1494a85cdca43ee7fe7
sha1: f8b0bf6ceab1cfca0ac05b09bdf4ec6510affa0d
sha256: ae2443ba0c754956c8b132cf997f7780f74d5ca3ec879ff749b426bd77be6cf5
sha512: 8838bb3f389e4854b2f505747e2fff0b867cad40ee132f2f57d0e91310c11393e31e6b1e3100a42ae3bf66802a35a4cafeead244f3e9d5de0424cdc6624aa631
ssdeep: 24576:mKYdYONbuOcXH1txubJXdOjy9fjTC8hUGeZgnh:O/NSOqt0gy9UGCoh
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1BB0523B35E41A167E50835BE931387FC90709FA90990D9FBE3077C9BBA74284706736A
sha3_384: 037d3f8c29ee727cadbccc97778638c3887b39417a02cf94e3d31cdd306f9b697da5026431618df22b7879a8b7ffa3bf
ep_bytes: 6801c05900e801000000c3c3498bda91
timestamp: 2022-07-28 20:33:57


Version Info:

Comments: 
CompanyName: 同城游
FileDescription: 游戏程序
FileVersion: 4, 0, 2012, 1205
InternalName: DqMj
LegalCopyright: 同城游 (C) 2003-2004
LegalTrademarks: 
OriginalFilename: DqMj.EXE
PrivateBuild: 
ProductName: Game 应用程序
ProductVersion: 4, 0, 2012, 1205
SpecialBuild: 
Translation: 0x0804 0x04b0

Malware.AI.1660977584 also known as:

LionicTrojan.Win32.Jaik.4!c
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Jaik.89641
FireEyeGeneric.mg.f88beb5e3977d149
McAfeeArtemis!F88BEB5E3977
CylanceUnsafe
CrowdStrikewin/malicious_confidence_100% (W)
AlibabaTrojan:Win32/QQWare.170f50f4
K7GWTrojan ( 0059380b1 )
K7AntiVirusTrojan ( 0059380b1 )
SymantecML.Attribute.HighConfidence
tehtrisGeneric.Malware
ESET-NOD32a variant of Win32/QQWare.DM
APEXMalicious
Paloaltogeneric.ml
CynetMalicious (score: 100)
BitDefenderGen:Variant.Jaik.89641
NANO-AntivirusTrojan.Win32.SMSSend.jrbqep
AvastWin32:Trojan-gen
Ad-AwareGen:Variant.Jaik.89641
EmsisoftGen:Variant.Jaik.89641 (B)
F-SecureTrojan.TR/QQTen.hefij
DrWebTrojan.SMSSend.7718
VIPREGen:Variant.Jaik.89641
McAfee-GW-EditionArtemis!Trojan
Trapminemalicious.high.ml.score
SophosMal/Generic-S
SentinelOneStatic AI – Suspicious PE
AviraTR/QQTen.hefij
Antiy-AVLTrojan/Win32.QQWare
MicrosoftTrojan:Win32/Wacatac.B!ml
ArcabitTrojan.Jaik.D15E29
GDataGen:Variant.Jaik.89641
VBA32BScope.TrojanDownloader.Banload
ALYacGen:Variant.Jaik.89641
MAXmalware (ai score=89)
MalwarebytesMalware.AI.1660977584
TrendMicro-HouseCallTROJ_GEN.R03BH0CH622
RisingTrojan.QQWare!8.105 (CLOUD)
MaxSecureTrojan.Malware.186436685.susgen
FortinetW32/QQWare.DM!tr
BitDefenderThetaGen:NN.ZelphiF.34592.0W0aaeJucdnj
AVGWin32:Trojan-gen
Cybereasonmalicious.ceab1c
PandaTrj/Chgt.AD

How to remove Malware.AI.1660977584?

Malware.AI.1660977584 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment