Malware

Should I remove “Malware.AI.2149178043”?

Malware Removal

The Malware.AI.2149178043 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.2149178043 virus can do?

  • Unconventionial binary language: Chinese (Simplified)
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • The binary contains an unknown PE section name indicative of packing
  • The executable is compressed using UPX
  • Authenticode signature is invalid

How to determine Malware.AI.2149178043?



File Info:

name: 2161C87C27F1262A3D69.mlw
path: /opt/CAPEv2/storage/binaries/64464a46504affdcb75d476f76c673b96171a807dd0b7f6062265cc30062ed60
crc32: F5AA9BF4
md5: 2161c87c27f1262a3d69d1673d61c199
sha1: 96682074a7f433adf40efd3741d31996c4486c05
sha256: 64464a46504affdcb75d476f76c673b96171a807dd0b7f6062265cc30062ed60
sha512: fbda478287f425a1cd5e9dc66669578a0d9a42aeff0f1b1750f1d4a6ba0d389a3c2c0896861579ce126a9aec1810706224ee29e1280418490b0a2b6c7d989236
ssdeep: 1536:I+I1NBKlkyhURE/mmt6I+IEWQCUw5LFOOw+lhQZHKSS/uZ1e:I+I1LxyhURE/pRhQCUsLFvKx
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T123C492463E0894B3C7974F33095687B5DA117EE8AFE1921E250877CEF6B939F9A06304
sha3_384: 5342b63d11da4ee47117bc00b597ca06961f18f29a3ee1453e7e6f28ddf2b1c7663e2578440fdc341f165ac745d0e4e9
ep_bytes: 60be15b049008dbeeb5ff6ff5783cdff
timestamp: 2009-02-24 21:58:23


Version Info:

FileDescription: wxTools
FileVersion: 6.6.3.7
LegalCopyright: wxTools
Translation: 0x0804 0x04b0

Malware.AI.2149178043 also known as:

Elasticmalicious (moderate confidence)
MicroWorld-eScanGen:Trojan.Heur.Jm0@!pFeLPeb
FireEyeGeneric.mg.2161c87c27f1262a
McAfeeGenericRXAA-AA!2161C87C27F1
CylanceUnsafe
CrowdStrikewin/malicious_confidence_70% (D)
BitDefenderThetaAI:Packer.4B53EB611C
tehtrisGeneric.Malware
APEXMalicious
BitDefenderGen:Trojan.Heur.Jm0@!pFeLPeb
AvastWin32:Malware-gen
Ad-AwareGen:Trojan.Heur.Jm0@!pFeLPeb
ComodoPacked.Win32.MUPX.Gen@24tbus
VIPREGen:Trojan.Heur.Jm0@!pFeLPeb
McAfee-GW-EditionBehavesLike.Win32.HLLP.hz
EmsisoftGen:Trojan.Heur.Jm0@!pFeLPeb (B)
SentinelOneStatic AI – Suspicious PE
AviraHEUR/AGEN.1214989
MicrosoftTrojan:Win32/Wacatac.B!ml
GDataGen:Trojan.Heur.Jm0@!pFeLPeb
CynetMalicious (score: 100)
AhnLab-V3Trojan/Win.Generic.R502272
ALYacGen:Trojan.Heur.Jm0@!pFeLPeb
MAXmalware (ai score=85)
MalwarebytesMalware.AI.2149178043
IkarusTrojan-Dropper.Agent
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/ULPM.16C0!tr
AVGWin32:Malware-gen
Cybereasonmalicious.c27f12

How to remove Malware.AI.2149178043?

Malware.AI.2149178043 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment