Malware.AI.2262832897 (file analysis)

The Malware.AI.2262832897 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.2262832897 virus can do?

The binary likely contains encrypted or compressed data.
Authenticode signature is invalid
Binary compilation timestomping detected

How to determine Malware.AI.2262832897?


File Info:
name: 0C4F700D490EC5191127.mlw
path: /opt/CAPEv2/storage/binaries/80ef0f035de84707629e1268d04ea9571e9d4aa42fd10d7965c73d965643bb8a
crc32: 033A77DD
md5: 0c4f700d490ec51911276a59f07b0f40
sha1: 0d5312465e089bddeab1d989049562d01000f094
sha256: 80ef0f035de84707629e1268d04ea9571e9d4aa42fd10d7965c73d965643bb8a
sha512: 5a1eac024ea1b10cb5c3db48558dfda92cfb3e2854945a4a11fc7ca0574147b8d9902ec147a28e99366993ef71bcf4ed5de9190f879bb1e1f74858577e86e9fa
ssdeep: 98304:zDxXqXMWomXKXKXKXL2Uc8LDVGp7PYls7gfdrU/64ZN7rwAdK:5XqXdi2UcQ5GZA4/64Zlwy
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1B636331133BC8942E73E06FC142714628FB27996B9B9D6D92DC03EDD42F63539293A27
sha3_384: f2d69a55326fc2c99fb433476d72616617cfdfb54d6495871ff754b0266317892198ef8706325111f59dabec65d2c816
ep_bytes: ff250020400000000000000000000000
timestamp: 2038-11-08 07:04:56

Version Info:
Translation: 0x0000 0x04b0
Comments: a game tweak that maximizes game performances.
CompanyName: Lyod
FileDescription: Lyods Game Tweaker
FileVersion: 1.0.0.0
InternalName: LyodsTweak.exe
LegalCopyright: Copyright ©  2022
LegalTrademarks: 
OriginalFilename: LyodsTweak.exe
ProductName: Lyods Game Tweaker
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

Malware.AI.2262832897 also known as:

Lionic	Trojan.Win32.Disco.i!c
MicroWorld-eScan	Trojan.GenericKD.48186447
FireEye	Trojan.GenericKD.48186447
ALYac	Trojan.GenericKD.48186447
Cylance	Unsafe
Sangfor	Infostealer.MSIL.Disco.gen
Symantec	ML.Attribute.HighConfidence
TrendMicro-HouseCall	TROJ_GEN.R002C0PB522
Cynet	Malicious (score: 100)
Kaspersky	HEUR:Trojan-PSW.MSIL.Disco.gen
BitDefender	Trojan.GenericKD.48186447
Avast	Win32:PWSX-gen [Trj]
Ad-Aware	Trojan.GenericKD.48186447
Sophos	Mal/Generic-S
TrendMicro	TROJ_GEN.R002C0PB522
McAfee-GW-Edition	GenericRXRP-KD!0C4F700D490E
Emsisoft	Trojan.GenericKD.48186447 (B)
GData	Trojan.GenericKD.48186447
Arcabit	Trojan.Generic.D2DF444F
Microsoft	Trojan:Win32/Sabsik.TE.B!ml
AhnLab-V3	Trojan/Win.KD.C4954463
McAfee	GenericRXRP-KD!0C4F700D490E
MAX	malware (ai score=88)
VBA32	TScope.Trojan.MSIL
Malwarebytes	Malware.AI.2262832897
APEX	Malicious
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	PossibleThreat
AVG	Win32:PWSX-gen [Trj]
Panda	Trj/GdSda.A

How to remove Malware.AI.2262832897?

Malware.AI.2262832897 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X