About “Malware.AI.2258316599” infection

The Malware.AI.2258316599 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.2258316599 virus can do?

Authenticode signature is invalid
Anomalous binary characteristics

How to determine Malware.AI.2258316599?


File Info:
name: B532D4A4EE257746DCAF.mlw
path: /opt/CAPEv2/storage/binaries/d49407a4e99e921cd4ffaf497a1956ec255c3ce623bf8d2bbc43d8c1d7a87059
crc32: 670D622E
md5: b532d4a4ee257746dcaf46793a32e763
sha1: 6a21f3f81eabec22ac678cb3f8897bec0ac74eec
sha256: d49407a4e99e921cd4ffaf497a1956ec255c3ce623bf8d2bbc43d8c1d7a87059
sha512: 5a9fd859c0576842e955d01d82416a7df8dfca847b2a9ae51913dcc63935d9a8d2a0c1edb031fa2f36abc59a28d33655568eab7b1c15717f719fce3eb9bc95d0
ssdeep: 384:HR13wAWyF5nT1UmalQLDcOJ9elFUOLg2JIaW9C5bW9odW:vf5T5kQcOJ9elFbIaw
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T10092291091E550B1ECA31930E9FB3372DD72AD251829EB8B376CD86D1F71A43DA3660A
sha3_384: b2e9f773b5159526f49e6c4cf40631777e2db195e4a5dd4a0051a5a1dafd70a9a2b0d41f0bb5c44b937a86d03a39c383
ep_bytes: 906800000800c368f821e000e875fcff
timestamp: 2009-07-13 23:19:28

Version Info:
CompanyName: Microsoft Corporation
FileDescription: Host Process for Windows Services
FileVersion: 6.1.7600.16385 (win7_rtm.090713-1255)
InternalName: svchost.exe
LegalCopyright: © Microsoft Corporation. All rights reserved.
OriginalFilename: svchost.exe
ProductName: Microsoft® Windows® Operating System
ProductVersion: 6.1.7600.16385
Translation: 0x0409 0x04b0

Malware.AI.2258316599 also known as:

Bkav	W32.AIDetectMalware
Elastic	malicious (high confidence)
McAfee	Artemis!B532D4A4EE25
Cylance	unsafe
Sangfor	Trojan.Win32.Agent.Vs4w
CrowdStrike	win/malicious_confidence_60% (W)
Cynet	Malicious (score: 99)
Sophos	Generic Reputation PUA (PUA)
F-Secure	Trojan.TR/Patched.Gen
McAfee-GW-Edition	BehavesLike.Win32.Rootkit.mm
GData	Win32.Trojan.PSE.17GPP2
Avira	TR/Patched.Gen
Microsoft	Program:Win32/Wacapew.C!ml
Google	Detected
Malwarebytes	Malware.AI.2258316599
Ikarus	Trojan.Patched
Fortinet	W32/Wacapew.C!tr
DeepInstinct	MALICIOUS

How to remove Malware.AI.2258316599?

Malware.AI.2258316599 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X