Malware

Malware.AI.2325564660 malicious file

Malware Removal

The Malware.AI.2325564660 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.2325564660 virus can do?

  • Unconventionial binary language: Chinese (Simplified)
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX
  • Likely installs a bootkit via raw harddisk modifications
  • Attempts to restart the guest VM
  • Network activity detected but not expressed in API logs

How to determine Malware.AI.2325564660?



File Info:

crc32: 7A2C311B
md5: 9428365a18a80d33560c8119396e7c1c
name: 9428365A18A80D33560C8119396E7C1C.mlw
sha1: 1c52fbc95fb5b36243fdf933c82a5d8817c163ae
sha256: 11485a098a6a685fcf88956d381b6586a756308060c2d3eebdc116729f302b98
sha512: 23c94bc2579bae564c5fcfc86b8588f456c1dab1d5219dadbe9e53f619179000a407b5e3e0cea1878729d49e745af1e68e644920dbc7334dc97aa8b1301b816a
ssdeep: 6144:oZrzV6/iezP7KO2iqp+JndHkY9xnJztNRs7Wg38nLoSCGp4wD:sHUiezP2idld59RZtNAWg3CxVp4
type: PE32 executable (console) Intel 80386, for MS Windows, UPX compressed


Version Info:

LegalCopyright: x5915x9633 x7248x6743x6240x6709
FileVersion: 1.0.0.0
CompanyName: x5915x9633
Comments: x672cx7a0bx5e8fx4f7fx7528x6613x8bedx8a00x7f16x5199(http://www.dywt.com.cn)
ProductName: x8352x91cex884cx52a8x900fx89c6x6ce8x5165
ProductVersion: 1.0.0.0
FileDescription: x8352x91cex884cx52a8x900fx89c6x6ce8x5165
Translation: 0x0804 0x04b0

Malware.AI.2325564660 also known as:

BkavW32.AIDetect.malware1
K7AntiVirusTrojan ( 005246d51 )
Elasticmalicious (high confidence)
CynetMalicious (score: 100)
ALYacGeneric.Ransom.MBRLock.C355D252
CylanceUnsafe
ZillyaTrojan.Foreign.Win32.58001
SangforTrojan.Win32.Save.a
CrowdStrikewin/malicious_confidence_100% (W)
K7GWTrojan ( 005246d51 )
Cybereasonmalicious.a18a80
CyrenW32/Agent.EW.gen!Eldorado
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/MBRlock.AQ
APEXMalicious
AvastWin32:Malware-gen
ClamAVWin.Malware.Agen-7172367-0
KasperskyTrojan-Ransom.Win32.Foreign.naew
BitDefenderGeneric.Ransom.MBRLock.C355D252
NANO-AntivirusTrojan.Win32.Ransom.feuiml
MicroWorld-eScanGeneric.Ransom.MBRLock.C355D252
TencentMalware.Win32.Gencirc.114d051e
Ad-AwareGeneric.Ransom.MBRLock.C355D252
SophosMal/Generic-S
ComodoMalware@#3ck81h85er77q
F-SecureTrojan.TR/Ransom.MBRlock.qnsxz
BitDefenderThetaGen:NN.ZexaF.34758.tmKfaCUTR0ib
VIPRETrojan.Win32.Generic!BT
TrendMicroRansom.Win32.MBRLOCKER.SM
McAfee-GW-EditionBehavesLike.Win32.Generic.fc
FireEyeGeneric.mg.9428365a18a80d33
EmsisoftGeneric.Ransom.MBRLock.C355D252 (B)
SentinelOneStatic AI – Malicious PE
JiangminTrojanDropper.Agent.aymu
AviraTR/Ransom.MBRlock.qnsxz
eGambitUnsafe.AI_Score_99%
Antiy-AVLTrojan/Generic.ASCommon.FA
MicrosoftRansom:Win32/Molock.A!rfn
ArcabitGeneric.Ransom.MBRLock.C355D252
AegisLabTrojan.Win32.Foreign.4!c
ZoneAlarmTrojan-Ransom.Win32.Foreign.naew
GDataWin32.Application.PUPStudio.B
Acronissuspicious
McAfeeArtemis!9428365A18A8
MAXmalware (ai score=100)
VBA32SScope.Trojan.PWS.22627
MalwarebytesMalware.AI.2325564660
PandaTrj/GdSda.A
TrendMicro-HouseCallRansom.Win32.MBRLOCKER.SM
RisingRansom.MBRlock!1.B6DC (CLASSIC)
IkarusTrojan.Win32.MBRlock
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/MBRlock.AQ!tr.ransom
AVGWin32:Malware-gen
Paloaltogeneric.ml

How to remove Malware.AI.2325564660?

Malware.AI.2325564660 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment