Should I remove “Malware.AI.2049003589”?

The Malware.AI.2049003589 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.2049003589 virus can do?

Authenticode signature is invalid

How to determine Malware.AI.2049003589?


File Info:
name: B5725FE2D9636DE98D13.mlw
path: /opt/CAPEv2/storage/binaries/cf07d634f317f900f46725d6f65912c5850ddfde81041c54f65abdd1cac9b2ca
crc32: 66CFF831
md5: b5725fe2d9636de98d132ce05a3b5ad5
sha1: ea5b97e73efe7ae03d2d43d79f1d890b8abbf8d0
sha256: cf07d634f317f900f46725d6f65912c5850ddfde81041c54f65abdd1cac9b2ca
sha512: 5aac301d93eea22d16b10b23957277ee5bd0522549095760573c565500c947668e25dc69ae25a3865865d5a92ff9b572c1cc887a267913eac630f329fc576ef9
ssdeep: 1536:pYm6YE2uTIfnOm3hpcmMyYjaDv3fyXv6NFaB6PdimX7VM7pPBE6OF3:GmrE2uTK3fMzaDP6Xv67UsEAJkQ3
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T127F3AE13B7858452C95106BC2971E7BAD37EBC30CF94C2C7E791B61E5E389D8A87224B
sha3_384: 1f1d28d7af63f464a2640214bb560b295b035efddf087492de7785ce0c278397971de6634408cb00c6006bc15a9c94f5
ep_bytes: e802040000e974feffff558bec8b4508
timestamp: 2022-10-17 09:15:07

Version Info:
CompanyName: RevolutionTeam
FileDescription: CEF is a modern authentication system implemented by RevolutionTeam and it's a work in progress project.
FileVersion: 1.0.0.1
InternalName: new_cef.exe
LegalCopyright: Copyright (C) RevolutionTeam 2022
OriginalFilename: new_cef.exe
ProductName: new_cef
ProductVersion: 1.0.0.1
Translation: 0x0409 0x04b0

Malware.AI.2049003589 also known as:

Lionic	Trojan.Win32.Lazy.4!c
MicroWorld-eScan	Trojan.GenericKD.63569221
FireEye	Trojan.GenericKD.63569221
ALYac	Trojan.GenericKD.63569221
Cylance	Unsafe
VIPRE	Trojan.GenericKD.63569221
Sangfor	Trojan.Win32.Agent.V2uz
Cyren	W32/S-1ebde234!Eldorado
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (moderate confidence)
TrendMicro-HouseCall	TROJ_GEN.R002C0PK522
BitDefender	Trojan.GenericKD.63569221
Avast	Win32:TrojanX-gen [Trj]
Ad-Aware	Trojan.GenericKD.63569221
TrendMicro	TROJ_GEN.R002C0PK522
McAfee-GW-Edition	GenericRXUL-NL!B5725FE2D963
Emsisoft	Trojan.GenericKD.63569221 (B)
Ikarus	Trojan.Inject
GData	Trojan.GenericKD.63569221
Jiangmin	Trojan.Generic.gwtef
Google	Detected
Antiy-AVL	GrayWare/Win32.Wacapew
Arcabit	Trojan.Generic.D3C9FD45
Microsoft	Trojan:Win32/Wacatac.B!ml
Cynet	Malicious (score: 100)
AhnLab-V3	Malware/Win.Generic.R531283
McAfee	Artemis!B5725FE2D963
Malwarebytes	Malware.AI.2049003589
APEX	Malicious
MAX	malware (ai score=88)
MaxSecure	Trojan.Malware.188236012.susgen
Fortinet	W32/PossibleThreat
AVG	Win32:TrojanX-gen [Trj]
Panda	Trj/Chgt.AD

How to remove Malware.AI.2049003589?

Malware.AI.2049003589 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X