About “Malware.AI.2315539140” infection

The Malware.AI.2315539140 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.2315539140 virus can do?

Behavioural detection: Executable code extraction – unpacking
Sample contains Overlay data
The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid

How to determine Malware.AI.2315539140?


File Info:
name: 45F69738569202725173.mlw
path: /opt/CAPEv2/storage/binaries/53df5f19256b5922a65a340f23fda6dd52d6d0332925740e906ee3c30d8ea8c7
crc32: 55252CDA
md5: 45f697385692027251734bd22400eee1
sha1: 6d3fdc5a8062635d1e8e1f83c4eee88d44fc77ed
sha256: 53df5f19256b5922a65a340f23fda6dd52d6d0332925740e906ee3c30d8ea8c7
sha512: 2d69de3156b9a0de592a2a722934b5c972cd212a5c92e2e12585341befb264a42f870eb8813466776f267a956b4d2def91aba5aa68f9f7244f0dfcd58d91e0be
ssdeep: 12288:O3Mjhnw888888888888W888888888887ItP2XDKWiLNoDBkAdxWu2bFeqi6y2i+G:YMjh4ItOXGWiLGDB9dxQJe2c+G
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1C2B4E103F3C34471F5691939D89680486E23797918F2607B3DF9DB4F09BD6826C7AAB2
sha3_384: 85afe615bbc3b2b95e86c9cea7c9d85bacb3945ace44b2367ea75570f3d5e37e33c4f5fbe82bda39c9686c2496a1365a
ep_bytes: 558bec83c4a453565733c08945c48945
timestamp: 2012-05-29 11:51:48

Version Info:
Comments: This installation was built with Inno Setup.
CompanyName:                                                             
FileDescription: MKV Player Setup                                            
FileVersion: 2.25                
LegalCopyright:                                                                                                     
ProductName: MKV Player                                                  
ProductVersion: 2.25                
Translation: 0x0000 0x04b0

Malware.AI.2315539140 also known as:

Lionic	Trojan.Win32.Bundler.4!c
Elastic	malicious (moderate confidence)
MicroWorld-eScan	Generic.Application.Bundler.Relevant.A.14E537B7
Skyhigh	RDN/Generic PUP.x
McAfee	RDN/Generic PUP.x
Malwarebytes	Malware.AI.2315539140
Sangfor	Trojan.Win32.Bundler.V1fv
K7AntiVirus	Adware ( 0058ba2b1 )
Alibaba	AdWare:Win32/Relevant.54fa02fd
K7GW	Adware ( 0058ba2b1 )
CrowdStrike	win/grayware_confidence_90% (D)
Symantec	PUA.Gen.2
ESET-NOD32	multiple detections
Cynet	Malicious (score: 100)
BitDefender	Generic.Application.Bundler.Relevant.A.14E537B7
Avast	Other:Malware-gen [Trj]
Emsisoft	Generic.Application.Bundler.Relevant.A.14E537B7 (B)
F-Secure	Adware.ADWARE/Relevant.gufur
VIPRE	Generic.Application.Bundler.Relevant.A.14E537B7
FireEye	Generic.Application.Bundler.Relevant.A.14E537B7
Sophos	Generic Reputation PUA (PUA)
GData	Generic.Application.Bundler.Relevant.A.14E537B7
Avira	ADWARE/Relevant.gufur
MAX	malware (ai score=85)
Arcabit	Generic.Application.Bundler.Relevant.A.14E537B7
ALYac	Generic.Application.Bundler.Relevant.A.14E537B7
Cylance	unsafe
Fortinet	Riskware/NDAoF
AVG	Other:Malware-gen [Trj]
DeepInstinct	MALICIOUS

How to remove Malware.AI.2315539140?

Malware.AI.2315539140 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X