Malware.AI.2139406791 malicious file

The Malware.AI.2139406791 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.2139406791 virus can do?

Behavioural detection: Executable code extraction – unpacking
Authenticode signature is invalid

How to determine Malware.AI.2139406791?


File Info:
name: 360AE9B8DD31EFA2DC33.mlw
path: /opt/CAPEv2/storage/binaries/f11f6024aae1c0f8a7a7984e8d64cf04f472ebdb70cfb523864a9d2eae2f4b80
crc32: 3DBB203E
md5: 360ae9b8dd31efa2dc332255c4764b09
sha1: e36ce1e3422a7f18565cfa6bf53c602b32b9876e
sha256: f11f6024aae1c0f8a7a7984e8d64cf04f472ebdb70cfb523864a9d2eae2f4b80
sha512: 6d1e8096f8971ced62dc3dcfe236ed03aa8454ee6572071d9a0049b02d4d999aadc3609f81d67468ec56fa7ddbe3a91f637dd055b011810f40017c66dc79efd0
ssdeep: 3072:zD+WuMBspr8+k77/pswWR/x0+dv4TLxyK4eX4oQZiE7:zSWuMBsFvS04+dv4TVdW
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1A004C52A7691F23AD410CAF4391A83A0987DEC3624E6BD17F7C25B15B7F1CA79220753
sha3_384: 24bfd5145bd0ae8a9dbf492378a57644d4fd3b70c3242d9aa02213368109d050c6fa26f6e4785fe3709c0b4ef5883652
ep_bytes: 6838384000e8f0ffffff000000000000
timestamp: 2006-11-21 13:19:16

Version Info:
Translation: 0x0409 0x04b0
ProductName: JlzKtEhOHC
FileVersion: 1.00
ProductVersion: 1.00
InternalName: DcXARkfPdFzksZ
OriginalFilename: DcXARkfPdFzksZ.exe

Malware.AI.2139406791 also known as:

Bkav	W32.AIDetectMalware
Elastic	malicious (high confidence)
MicroWorld-eScan	Gen:Trojan.Sresmon.Gen.1
FireEye	Generic.mg.360ae9b8dd31efa2
CAT-QuickHeal	Trojan.Vobfus.gen
McAfee	VBObfus.bb
Cylance	unsafe
Sangfor	Suspicious.Win32.Save.vb
K7AntiVirus	EmailWorm ( 0054d10f1 )
K7GW	EmailWorm ( 0054d10f1 )
CrowdStrike	win/malicious_confidence_100% (W)
Baidu	Win32.Worm.Pronny.d
VirIT	Worm.Win32.Generic.AYPG
Cyren	W32/Vobfus.V.gen!Eldorado
Symantec	W32.Changeup!gen15
ESET-NOD32	Win32/AutoRun.VB.AKZ
APEX	Malicious
ClamAV	Win.Trojan.VB-1488
Kaspersky	Worm.Win32.Vobfus.efna
BitDefender	Gen:Trojan.Sresmon.Gen.1
NANO-Antivirus	Trojan.Win32.VB.hlkida
SUPERAntiSpyware	Trojan.Agent/Gen-Vobfus
Avast	Win32:AutoRun-CNS [Trj]
Tencent	Trojan.Win32.Koobface.p
TACHYON	Worm/W32.VB-WBNA.180224
Emsisoft	Gen:Trojan.Sresmon.Gen.1 (B)
F-Secure	Trojan.TR/Agent.hjmr
DrWeb	Trojan.VbCrypt.60
VIPRE	Gen:Trojan.Sresmon.Gen.1
TrendMicro	WORM_VOBFUS.SMAC
McAfee-GW-Edition	BehavesLike.Win32.VBObfus.cm
Trapmine	suspicious.low.ml.score
Sophos	Mal/VB-XV
SentinelOne	Static AI – Malicious PE
GData	Gen:Trojan.Sresmon.Gen.1
Google	Detected
Avira	TR/Agent.hjmr
Antiy-AVL	Worm/Win32.WBNA.gen
Xcitium	TrojWare.Win32.VB.AVA@4paxk7
Arcabit	Trojan.Sresmon.Gen.1
ZoneAlarm	Worm.Win32.Vobfus.efna
Microsoft	Worm:Win32/Vobfus.gen!N
Cynet	Malicious (score: 100)
AhnLab-V3	Trojan/Win32.Diple.C60910
Acronis	suspicious
BitDefenderTheta	AI:Packer.97B67B1320
MAX	malware (ai score=84)
VBA32	BScope.Trojan.Diple
Malwarebytes	Malware.AI.2139406791
Panda	Trj/Genetic.gen
TrendMicro-HouseCall	WORM_VOBFUS.SMAC
Rising	Worm.VBCode!1.99BC (CLASSIC)
Yandex	Trojan.GenAsa!TV0xXeGkJ00
Ikarus	Worm.Win32.WBNA
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	W32/VBKrypt.C!tr
AVG	Win32:AutoRun-CNS [Trj]
DeepInstinct	MALICIOUS

How to remove Malware.AI.2139406791?

Malware.AI.2139406791 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X