Malware.AI.2244524272 (file analysis)

The Malware.AI.2244524272 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.2244524272 virus can do?

Dynamic (imported) function loading detected
Reads data out of its own binary image
Authenticode signature is invalid

How to determine Malware.AI.2244524272?


File Info:
name: CA48E3F9775F070907B3.mlw
path: /opt/CAPEv2/storage/binaries/8e714edb952c700909b379a4c55defb0160e4f60d35421bc38972834bc86a2aa
crc32: 70751E34
md5: ca48e3f9775f070907b3b2544928d81a
sha1: bb8a12e3f37e6826f5fbc71150e551168a214e8d
sha256: 8e714edb952c700909b379a4c55defb0160e4f60d35421bc38972834bc86a2aa
sha512: 66b52c879cb8791b4bfaa88a4804f966e437a2328fa090221a9b06ab18c9da6732b42c954363d29837d72cefe75a93a989a5828f7e56a507454523b1c79ae7f8
ssdeep: 12288:ZJPVEWnNO3mmUv9alC4ItHQMRv8tUscqh+Iwouu6bThocwoqQdVEW+:ZJPVvqGalt0wvtUsZMGulbOcRq6V0
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T172D423A0A550CCAAC4612BB12ABA6AA75FF6750B419C1F4F4F4037AB7C137D35C4F2A1
sha3_384: 0965218730907c8b8041e2fc0891e0d11fddb89748993a3ad693edaadd65110ae0e6ddaafbb6efc3d857e728eff94cb4
ep_bytes: 81ec8401000053565733db6801800000
timestamp: 2019-12-16 00:50:56

Version Info:
0: [No Data]

Malware.AI.2244524272 also known as:

Lionic	Trojan.Win32.Vimditator.4!c
Elastic	malicious (high confidence)
MicroWorld-eScan	Gen:Variant.Doina.14830
FireEye	Gen:Variant.Doina.14830
Cylance	Unsafe
Sangfor	Suspicious.Win32.Save.a
CrowdStrike	win/malicious_confidence_60% (W)
Alibaba	Trojan:Win32/Vimditator.dc8fdc5e
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	multiple detections
APEX	Malicious
Paloalto	generic.ml
ClamAV	Win.Dropper.NetWire-9775036-0
Kaspersky	Trojan.Win32.Vimditator.ahbu
BitDefender	Gen:Variant.Doina.14830
NANO-Antivirus	Trojan.Win32.Kraddare.gzsdrg
Avast	Win32:Adware-gen [Adw]
Tencent	Win32.Trojan.Vimditator.Syro
Sophos	Mal/Generic-S
Comodo	Packed.Win32.MUPX.Gen@24tbus
DrWeb	Trojan.DownLoader34.47442
VIPRE	Trojan.Win32.Generic!BT
McAfee-GW-Edition	BehavesLike.Win32.Generic.jc
Emsisoft	Gen:Variant.Doina.14830 (B)
Avira	ADWARE/Adware.Gen7
Antiy-AVL	Trojan/Generic.ASMalwS.2FF15B8
Microsoft	Trojan:Win32/Occamy.C8E
ZoneAlarm	Trojan.Win32.Vimditator.ahbu
GData	Gen:Variant.Graftor.713045
Cynet	Malicious (score: 99)
McAfee	Artemis!CA48E3F9775F
MAX	malware (ai score=89)
VBA32	BScope.Trojan.Adkor
Malwarebytes	Malware.AI.2244524272
Rising	Trojan.Occamy!8.F1CD (CLOUD)
Yandex	Trojan.GenAsa!bdMzdbMsnG8
Fortinet	Riskware/Generic_PUA_NL
BitDefenderTheta	Gen:NN.ZexaE.34182.rq0@aa930saG
AVG	Win32:Adware-gen [Adw]
Cybereason	malicious.9775f0
Panda	Trj/CI.A

How to remove Malware.AI.2244524272?

Malware.AI.2244524272 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X