About “Malware.AI.1966173986” infection

The Malware.AI.1966173986 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.1966173986 virus can do?

Presents an Authenticode digital signature
Authenticode signature is invalid
Anomalous binary characteristics
Binary compilation timestomping detected

How to determine Malware.AI.1966173986?


File Info:
name: B1B23A3EF2B188EC7254.mlw
path: /opt/CAPEv2/storage/binaries/f418fe1717b34367df537043901cedb9303978045e80be38b037e435db948bd6
crc32: C558F992
md5: b1b23a3ef2b188ec725488dc20ac979f
sha1: 89e4460faf44f6ec0bad6cde356f558e17b04e9b
sha256: f418fe1717b34367df537043901cedb9303978045e80be38b037e435db948bd6
sha512: 0c38ccf98a58e8a7c7686fb3e2372fa248c50ea87196abfbdff6cb31b0e2891c819d3e3f408ab1d92ac16a14717d8363c6efec3ffc47d0b62011b7489ab392c8
ssdeep: 1536:FKmGP2DbEXo0KZwtqgQiYlwTh8DhDAaAaAaAaAaAaAaAaAaAuACCSG3/3/3/3/3U:rGODbGo0KOFDRxxpbVWCIBdeA
type: PE32+ executable (GUI) x86-64, for MS Windows
tlsh: T14624CD58E863A471DDDDA0B8604C9B23F55AF06932CB17C57286BFE667C079CB2210ED
sha3_384: 9bd1e9b9442db9f073a9e7d8f02976fa9b1c06e2a3fed35628d5fdffbdb068a7402e5ab69c08dbf4a25acfb327df4053
ep_bytes: 40534883ec20488bd9e88a050000488b
timestamp: 2100-03-02 06:33:42

Version Info:
CompanyName: Microsoft Corporation
FileDescription: Client Server Runtime Process
FileVersion: 10.0.17134.1 (WinBuild.160101.0800)
InternalName: CSRSS.Exe
LegalCopyright: © Microsoft Corporation. All rights reserved.
OriginalFilename: CSRSS.Exe
ProductName: Microsoft® Windows® Operating System
ProductVersion: 10.0.17134.1
Translation: 0x0409 0x04b0

Malware.AI.1966173986 also known as:

Cylance	Unsafe
Cyren	W64/Ipamor.CZ.gen!Eldorado
ClamAV	Win.Malware.Mepaow-6725393-0
Antiy-AVL	Trojan/Generic.ASVirus.302
Microsoft	Trojan:Win32/Sabsik.FL.B!ml
Cynet	Malicious (score: 100)
Malwarebytes	Malware.AI.1966173986
Ikarus	Trojan.Dropper
Fortinet	W64/Bulz.9212!tr
MaxSecure	Trojan.Malware.121218.susgen

How to remove Malware.AI.1966173986?

Malware.AI.1966173986 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X