Malware.AI.2285842753 (file analysis)

The Malware.AI.2285842753 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.2285842753 virus can do?

Sample contains Overlay data
Authenticode signature is invalid
CAPE detected the MetaStealer malware family
Anomalous binary characteristics
Binary compilation timestomping detected

How to determine Malware.AI.2285842753?


File Info:
name: 2D298361781F6DB2C694.mlw
path: /opt/CAPEv2/storage/binaries/8a5b243432f7fc3dc7bb9860b73488555e0ee7b42fa7994c504a5d987f65c567
crc32: DD50B43B
md5: 2d298361781f6db2c6942a17c980c9f5
sha1: 396612b566fa0d29547ffaec03ffc0f7b9519301
sha256: 8a5b243432f7fc3dc7bb9860b73488555e0ee7b42fa7994c504a5d987f65c567
sha512: 942a293aaa6423a7383e57567993b2f9c5764e5c0596b2c49417cc82bafdee53b56a8cceb85898c1afe607c2f99aceca3ca9248404a42bcd6b2017bcf4fc05f0
ssdeep: 3072:mcNTxnbFITBPEuxwwK0gNARIUdGHl8JH3QqELnY0oxXl0jcadS2gMRqTjDv/Yueg:xdYk2lxVKcaAXMRqTjD4EL
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T111646B18B7E8D912E23E4BB595B0D6B15774EC57A052E70B5DD02CAB7D23380EB012BB
sha3_384: 87fe49a404a662f59a023b9fee75cf5c36d2fce08f03e1e26e8c0c5caebb4dbbbec71d0f0b8e77aaf399f297f608369e
timestamp: 2070-11-26 19:24:37

Version Info:
0: [No Data]

Malware.AI.2285842753 also known as:

Bkav	W32.AIDetectMalware.CS
ClamAV	Win.Malware.Trojanx-9862538-0
Skyhigh	BehavesLike.Win32.Generic.ft
K7AntiVirus	Unwanted-Program ( 0059886f1 )
K7GW	Unwanted-Program ( 0059886f1 )
CrowdStrike	win/malicious_confidence_100% (D)
Elastic	Windows.Generic.Threat
APEX	Malicious
Cynet	Malicious (score: 100)
Sophos	Generic ML PUA (PUA)
SentinelOne	Static AI – Malicious PE
Google	Detected
Kingsoft	malware.kb.a.999
Xcitium	Heur.Corrupt.PE@1z141z3
Microsoft	Trojan:Win32/Sonbokli.A!cl
Malwarebytes	Malware.AI.2285842753
Rising	Trojan.Generic@AI.100 (RDML:g7tnP/2p46oYIyhEwQErjQ)
Ikarus	Trojan-Spy.RedLineStealer
Cybereason	malicious.566fa0
DeepInstinct	MALICIOUS

How to remove Malware.AI.2285842753?

Malware.AI.2285842753 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X