Should I remove “Malware.AI.2179575104”?

The Malware.AI.2179575104 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.2179575104 virus can do?

SetUnhandledExceptionFilter detected (possible anti-debug)
Dynamic (imported) function loading detected
Authenticode signature is invalid

How to determine Malware.AI.2179575104?


File Info:
name: FFBF04D30391F70BF18A.mlw
path: /opt/CAPEv2/storage/binaries/c113c80945e3a1d5864790dd77beee135fc26e531b838d0f67cf31a2f4954100
crc32: D367FA57
md5: ffbf04d30391f70bf18aee460674609f
sha1: b170e8699f186442f31b903af976b65473aaf21c
sha256: c113c80945e3a1d5864790dd77beee135fc26e531b838d0f67cf31a2f4954100
sha512: 29b1e2035f94e94eb050ddbccc95f69914fd8b497781cc767101c38ea9a238994c0ac8123b18bf9f1347d83fd015af3f9c4bcd885c9302d31f7223026232827c
ssdeep: 3072:OSDELdBb/dn257UMnvBcwVu5D7fimhuLJXaLCCwFlrVx3voe0QUaiIi7IpbZL:OSoPbFIUMvxVA7a8udlXiIi7Ipb5
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1FD447D1277A1C872E75301724FD6C77AE9A8BA300F23958373EC6F1CEFB15A0662A515
sha3_384: 2e07f75668774e19046c558cd8788edd6cca4e398d50c7df768b2d2c081de8bf0d953154e69d4de227aead88c356f1dc
ep_bytes: 558bec6aff68102e430068704c410064
timestamp: 2005-01-05 03:48:00

Version Info:
Comments: 
CompanyName: 
FileDescription: FTLINK MFC Application
FileVersion: 1, 0, 0, 1
InternalName: FTLINK
LegalCopyright: Copyright (C) 2001-2002 Federal Technologies Limited
LegalTrademarks: 
OriginalFilename: FTLINK.EXE
PrivateBuild: 
ProductName: FTLINK Application
ProductVersion: 1, 0, 0, 1
SpecialBuild: 
Translation: 0x0409 0x04b0

Malware.AI.2179575104 also known as:

Bkav	W32.AIDetect.malware2
FireEye	Generic.mg.ffbf04d30391f70b
Cylance	Unsafe
Zillya	Trojan.Refroso.Win32.55740
Sangfor	Trojan.Win32.Sabsik.FL
VirIT	Trojan.Win32.Generic.AEGW
Symantec	ML.Attribute.HighConfidence
Paloalto	generic.ml
NANO-Antivirus	Trojan.Win32.Refroso.btveta
Avast	FileRepMalware
DrWeb	BackDoor.Bifrost.27421
McAfee-GW-Edition	BehavesLike.Win32.Infected.dh
Ikarus	Trojan.Win32.Refroso
GData	Win32.Trojan.Agent.2505H1
Jiangmin	Trojan/Refroso.aibr
Webroot	W32.Malware.Gen
Gridinsoft	Ransom.Win32.Sabsik.sa
ViRobot	Trojan.Win32.A.Refroso.270336.CK
Microsoft	Trojan:Win32/Sabsik.FL.B!ml
McAfee	Artemis!FFBF04D30391
VBA32	Trojan.Refroso
Malwarebytes	Malware.AI.2179575104
Rising	Malware.Heuristic!ET#82% (RDMK:cmRtazpAGIiFcY/ikIiEM9SUTnHj)
Yandex	Trojan.GenAsa!AN7GJk3fQKw
BitDefenderTheta	Gen:NN.ZexaE.34114.qq1@ay17KSci
AVG	FileRepMalware

How to remove Malware.AI.2179575104?

Malware.AI.2179575104 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X