Malware.AI.2148485417 (file analysis)

The Malware.AI.2148485417 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.2148485417 virus can do?

Unconventionial language used in binary resources: Turkish
The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid

How to determine Malware.AI.2148485417?


File Info:
name: F6F097A0DF6C2B56AA7B.mlw
path: /opt/CAPEv2/storage/binaries/745b7bf042adcafee973c616be695c399f425a43b13c6bc664737b12da424678
crc32: 0D5AD07C
md5: f6f097a0df6c2b56aa7b40624592e1cc
sha1: 11046d00c3b77fa57c6b120f7b7b8fa44f193413
sha256: 745b7bf042adcafee973c616be695c399f425a43b13c6bc664737b12da424678
sha512: b78f915ce8f8d07ddbbc1804a80d23e78205629d809691b86edfad2076e9be3bfa9ec2693db3ae9565828d2afd9410a16869200c577cef0bec57003dff8a7797
ssdeep: 6144:WVSjhE5zVCqIZHbeyXwXmFW6YS4Fu5mYnOnEBLVTK+nEs:W8jhE5zuZ7eyXwXTS4Q5jAEBLZDnEs
type: PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
tlsh: T1DAA4F641F1D9CC31C8A3963D9D4CDDE194B57E24DEA2B0A376E63F0EB4B2142272674A
sha3_384: d0608505312c236d83fa60a1628d7e6114da552179710c2715f693fecab1c1bf42c6c0d200748af01c4d988f6ee6ea0e
ep_bytes: 558bec83c4c4b8ecc81b04e86836fdff
timestamp: 1992-06-19 22:22:17

Version Info:
CompanyName: Vega Yazılım Ltd. Şti.
LegalCopyright: Vega Yazılım Ltd. Şti.
ProductVersion: 43
FileVersion: 0.0.0.0
Compile Date: 2 Mayıs 2019 Perşembe 18:54
Translation: 0x041f 0x04e6

Malware.AI.2148485417 also known as:

Bkav	W32.AIDetectMalware
Lionic	Trojan.Win32.Generic.4!c
Elastic	malicious (moderate confidence)
FireEye	Generic.mg.f6f097a0df6c2b56
Skyhigh	BehavesLike.Win32.Generic.gm
McAfee	GenericRXEG-WH!F6F097A0DF6C
Cylance	unsafe
Sangfor	Trojan.Win32.Agent.V74q
K7AntiVirus	Trojan ( 7000000f1 )
K7GW	Trojan ( 7000000f1 )
Symantec	ML.Attribute.HighConfidence
Cynet	Malicious (score: 100)
ClamAV	Win.Dropper.946dbfd-9864619-0
Sophos	Generic ML PUA (PUA)
SentinelOne	Static AI – Suspicious PE
Antiy-AVL	Trojan/Win32.SGeneric
Kingsoft	malware.kb.a.998
Google	Detected
Malwarebytes	Malware.AI.2148485417
TrendMicro-HouseCall	TROJ_GEN.R002H06K323
Rising	Trojan.Generic@AI.90 (RDML:i5Lj81bNzusKDcB83dR3GQ)
Ikarus	Backdoor.Poison
MaxSecure	Trojan.Malware.3411146.susgen
Fortinet	W32/Generic.RXEG!tr
DeepInstinct	MALICIOUS

How to remove Malware.AI.2148485417?

Malware.AI.2148485417 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X