What is “Malware.AI.2304012496”?

The Malware.AI.2304012496 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.2304012496 virus can do?

Sample contains Overlay data
The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid

How to determine Malware.AI.2304012496?


File Info:
name: 1EA50F30B853F3DE7D5E.mlw
path: /opt/CAPEv2/storage/binaries/173a73a8060f65cc60eab713490dd8962ddaed00f2ef64edcb738883a1f06cf3
crc32: 391998E1
md5: 1ea50f30b853f3de7d5eba5b52ed7612
sha1: 5ec6cbad5c5a1fb1c2f98da421052db2f129514e
sha256: 173a73a8060f65cc60eab713490dd8962ddaed00f2ef64edcb738883a1f06cf3
sha512: 32ffa151f84de2e8142c45f93f0c19edf544824e37c4f477b20eb32904a39c249c9f1649eee365fde3b5e45f556157bd42a6f707521a3acacfc1349494215963
ssdeep: 768:QCuE8+iWI/w5PP3lLuzZPKqfJFkEqr2MIg:xitw5PP3lLuBZfJqRr5Ig
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T151132A59BE654CE7EA52533E80F7C7762B3DF1814A235BB3B730BB344B136922098246
sha3_384: 51c1024fc2e3d9360bcbc81be57527fd948617984d96c9177bf9bc87a93b996f5e4bbd47d074eafcaaa2401f0434e574
ep_bytes: 83ec1cc7042402000000ff15b4814000
timestamp: 2022-05-10 16:05:43

Version Info:
0: [No Data]

Malware.AI.2304012496 also known as:

Bkav	W32.AIDetectMalware
Skyhigh	RDN/Generic.rp
McAfee	RDN/Generic.rp
Malwarebytes	Malware.AI.2304012496
Sangfor	Trojan.Win32.Agent.Vwmx
CrowdStrike	win/malicious_confidence_70% (W)
Elastic	malicious (moderate confidence)
Cynet	Malicious (score: 100)
APEX	Malicious
FireEye	Generic.mg.1ea50f30b853f3de
Sophos	Generic ML PUA (PUA)
Jiangmin	Trojan.CoinMiner.kv
Antiy-AVL	Trojan/Win32.PossibleThreat
AhnLab-V3	Malware/Win.Generic.C5151633
Cylance	unsafe
TrendMicro-HouseCall	TROJ_GEN.R002H06K323
Rising	Trojan.AgentTesla!8.104D5 (CLOUD)
SentinelOne	Static AI – Suspicious PE
MaxSecure	Trojan.Malware.3411146.susgen
Fortinet	W32/PossibleThreat
BitDefenderTheta	Gen:NN.ZexaF.36792.c0Y@aOzmL7c
Cybereason	malicious.d5c5a1
DeepInstinct	MALICIOUS

How to remove Malware.AI.2304012496?

Malware.AI.2304012496 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X