Malware

Malware.AI.1711048824 removal guide

Malware Removal

The Malware.AI.1711048824 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.1711048824 virus can do?

  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • Executable file is packed/obfuscated with MPRESS
  • Authenticode signature is invalid
  • Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine Malware.AI.1711048824?



File Info:

name: E6E2311A2283B91BC76B.mlw
path: /opt/CAPEv2/storage/binaries/d4eb6d9593b7ee5e0dc74051a2a8a8f4310b2282691ea4c230a67060a362a4ad
crc32: 1B96A039
md5: e6e2311a2283b91bc76b05a24985c7f0
sha1: cc06367edb79c6e7ba440dc19020c006688a6b55
sha256: d4eb6d9593b7ee5e0dc74051a2a8a8f4310b2282691ea4c230a67060a362a4ad
sha512: 5624d344a0027583f747ee04384818b04f9fc166158950c36822b2b54a873196a000386394a9be35e0347654d3dc71235b81dc2efe9f0acd93e1e1011e9af881
ssdeep: 12288:rNcPYaU5+fpWkd+oujGGBTBrDH1qQmrG0qdb:/iRWkd3bmrDVqQmrG00
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1C5A412D66660C528EBB9547C447A7C0B6121FC858A30ABF633817C1F3CA36ED29C295B
sha3_384: 8219c7e60c88407ed023b77d7d2b272ef6b2c454b33f8d40b8f3b691f8cd6f84920e39f3cb4b398707198f9c8d8e84f8
ep_bytes: 60e80000000058055a0b00008b3003f0
timestamp: 2022-06-05 02:37:54


Version Info:

FileDescription: AutoHotkey Unicode 32-bit
FileVersion: 1.1.34.03
InternalName: AutoHotkey
LegalCopyright: Copyright (C) 2003-2013
OriginalFilename: AutoHotkey.exe
ProductName: AutoHotkey
ProductVersion: 1.1.34.03
Translation: 0x0409 0x04b0

Malware.AI.1711048824 also known as:

BkavW32.AIDetectMalware
LionicTrojan.Win32.Generic.4!c
SkyhighBehavesLike.Win32.Generic.gc
McAfeeRDN/Generic.dx
MalwarebytesMalware.AI.1711048824
SangforTrojan.Win32.Agent.V2u5
CrowdStrikewin/malicious_confidence_70% (W)
Elasticmalicious (high confidence)
CynetMalicious (score: 100)
APEXMalicious
SophosGeneric ML PUA (PUA)
SentinelOneStatic AI – Malicious PE
Antiy-AVLTrojan/Win32.PossibleThreat
GoogleDetected
AhnLab-V3Trojan/Win.Generic.C5175487
Cylanceunsafe
TrendMicro-HouseCallTROJ_GEN.R002H06L823
IkarusTrojan.Win32.Agent
MaxSecureTrojan.Malware.3411146.susgen
FortinetW32/PossibleThreat
DeepInstinctMALICIOUS

How to remove Malware.AI.1711048824?

Malware.AI.1711048824 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment