Malware

About “Malware.AI.1722496171” infection

Malware Removal

The Malware.AI.1722496171 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.1722496171 virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • A file was accessed within the Public folder.
  • Sample contains Overlay data
  • Reads data out of its own binary image
  • Drops a binary and executes it
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid
  • Deletes executed files from disk
  • Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine Malware.AI.1722496171?



File Info:

name: 8B8E0AEFF17E8B9D9863.mlw
path: /opt/CAPEv2/storage/binaries/1a2d397a61d3ec94fb0d97d2c4a5d2b7972b9038bafc500141cdcc1e9a1214c8
crc32: 4B7DC916
md5: 8b8e0aeff17e8b9d9863258c50e77cc3
sha1: 81163c45ef5e814f9a97f0ad7c04696c68f7107f
sha256: 1a2d397a61d3ec94fb0d97d2c4a5d2b7972b9038bafc500141cdcc1e9a1214c8
sha512: fff54f6bc4d0b9b6dc90f344cc065a08776c74db03fa299000c46fd6460f76304b9529b7db80102a7038658f33c6951a53591755bc6c15bdd3e47f9258a17399
ssdeep: 49152:tqe3f62mYVR8/tH23Qiizk3SffPMWrQ0Zkf:8Si2xMHCQPkCnPcMe
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1C0B5D03BF268A53EC46E1B3245B39350997BBA60A41A8C1F07FC384DCF765601E3B656
sha3_384: 91f427f37632b306fac8d64d03c2af1287543b96b651422b3d02a4e518f7e692557922b900f0f62dfd9160aa55482e4c
ep_bytes: 558bec83c4a453565733c08945c48945
timestamp: 2021-06-03 08:09:11


Version Info:

Comments: This installation was built with Inno Setup.
CompanyName: Circuit Experts                                             
FileDescription: TransistorAmp 2 Setup                                       
FileVersion: 2.0                 
LegalCopyright:                                                                                                     
OriginalFileName:                                                   
ProductName: TransistorAmp 2                                             
ProductVersion: 2.0                                               
Translation: 0x0000 0x04b0

Malware.AI.1722496171 also known as:

BkavW32.AIDetectMalware
LionicTrojan.Win32.Generic.4!c
MicroWorld-eScanTrojan.GenericKD.39393274
FireEyeTrojan.GenericKD.39393274
ALYacTrojan.GenericKD.39393274
MalwarebytesMalware.AI.1722496171
SangforTrojan.Win32.Agent.V6ab
BitDefenderTrojan.GenericKD.39393274
AvastWin32:Malware-gen
EmsisoftTrojan.GenericKD.39393274 (B)
VIPRETrojan.GenericKD.39393274
McAfee-GW-EditionBehavesLike.Win32.Trojan.vc
GDataTrojan.GenericKD.39393274
WebrootW32.Trojan.Genkd
MAXmalware (ai score=81)
Antiy-AVLTrojan/Win32.PossibleThreat
ArcabitTrojan.Generic.D25917FA
MicrosoftTrojan:Win32/Wacatac.A!ml
CynetMalicious (score: 100)
McAfeeArtemis!8B8E0AEFF17E
VBA32Trojan.Wacatac
Cylanceunsafe
PandaTrj/Chgt.AD
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/PossibleThreat
AVGWin32:Malware-gen
Cybereasonmalicious.5ef5e8
DeepInstinctMALICIOUS

How to remove Malware.AI.1722496171?

Malware.AI.1722496171 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment