Malware.AI.2242555928 (file analysis)

The Malware.AI.2242555928 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.2242555928 virus can do?

The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid

How to determine Malware.AI.2242555928?


File Info:
name: 69C93CC1EBFC7C5BEA96.mlw
path: /opt/CAPEv2/storage/binaries/3b586f8e4c29abdcdcb7bacb8b7980d16c5efc16fe99a6e388d46bf4a2bd8446
crc32: B82CB1DA
md5: 69c93cc1ebfc7c5bea96858d98a3064b
sha1: 0ab5876c1105cbbeb4526169f485784d5fd31193
sha256: 3b586f8e4c29abdcdcb7bacb8b7980d16c5efc16fe99a6e388d46bf4a2bd8446
sha512: 4f8a373f19cd4d35039aff8bf32cc3b1058b7abf2deab354a7e3cff70d1097992bd608176a3d6c13a23bad84a70e06df0dfd7c83a5870246cd983341418f18d8
ssdeep: 768:6ClqKQSwmywVKFJPzTQor/U6jmkcghn9tV9CnSHK73MmRiEx2rqtKR3b8x:9lqKQSwmc/78orMW3V9e73MmVoR3Ix
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T190136C1393F28431E421CABD0C38B220AF3F7DB25CA4457AA779499E5D657909C6C373
sha3_384: 173168c9d462622437957cf8ed2cfd13967053821b170ab7a355d17c58c0e1efcbc0777ad347759970af9c7a43210624
ep_bytes: 558bec83c4f0535657a1b0934000c600
timestamp: 1992-06-19 22:22:17

Version Info:
0: [No Data]

Malware.AI.2242555928 also known as:

Lionic	Trojan.Win32.Pophot.lGNA
ClamAV	Win.Trojan.Pophot-9783164-0
Cylance	Unsafe
Sangfor	Trojan.Win32.Agent.Vn86
Alibaba	Trojan:Win32/Pophot.2f5939c3
CrowdStrike	win/malicious_confidence_60% (W)
VirIT	Trojan.Win32.Generic.AFPP
Cyren	W32/A-98954f5c!Eldorado
Symantec	Trojan.Gen.MBT
Elastic	malicious (moderate confidence)
APEX	Malicious
Paloalto	generic.ml
Cynet	Malicious (score: 100)
Kaspersky	HEUR:Trojan.Win32.Generic
NANO-Antivirus	Trojan.Win32.Pophot.covkkk
Avast	Win32:Malware-gen
Sophos	Mal/Generic-S
Comodo	Malware@#2izy4xy2r0fa6
DrWeb	Trojan.Hosts.40481
TrendMicro	TSPY_POPHOT_BK084562.TOMC
McAfee-GW-Edition	GenericRXAN-TH!69C93CC1EBFC
Trapmine	malicious.high.ml.score
Jiangmin	TrojanSpy.Pophot.dqe
Webroot	W32.Trojan.Gen
Kingsoft	Win32.Troj.Pophot.bg.(kcloud)
ZoneAlarm	HEUR:Trojan.Win32.Generic
Microsoft	Trojan:Win32/Wacatac.B!ml
Google	Detected
McAfee	GenericRXAN-TH!69C93CC1EBFC
VBA32	TrojanSpy.Pophot
Malwarebytes	Malware.AI.2242555928
TrendMicro-HouseCall	TSPY_POPHOT_BK084562.TOMC
Rising	Trojan.Generic!8.C3 (CLOUD)
Yandex	TrojanSpy.Pophot!9i6sDEGd7rU
Ikarus	Trojan-Spy.Win32.Pophot
MaxSecure	Trojan.Malware.300983.susgen
BitDefenderTheta	Gen:NN.ZelphiF.34606.cGW@a0uOCW
AVG	Win32:Malware-gen
Panda	Generic Malware

How to remove Malware.AI.2242555928?

Malware.AI.2242555928 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X