Malware.AI.2339809729 removal instruction

The Malware.AI.2339809729 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.2339809729 virus can do?

The binary contains an unknown PE section name indicative of packing
The executable is compressed using UPX
Authenticode signature is invalid

How to determine Malware.AI.2339809729?


File Info:
name: CF7C06BBB3295310CD81.mlw
path: /opt/CAPEv2/storage/binaries/7edc272818da86e2fe7b5f60127401ecfe5933e1306021e10755419e7180f3b6
crc32: C0B17157
md5: cf7c06bbb3295310cd81379c38ba6def
sha1: a5c544fc13e8b7104f1f16397c56e835fea63021
sha256: 7edc272818da86e2fe7b5f60127401ecfe5933e1306021e10755419e7180f3b6
sha512: e4fdf935575837d6eb0c649e39c4ddd7509b570fedf1c2d47797cfce89b2527d956b7871f6e8fb1f21c4191693bc407fb65808d6005c216d8e9bbe7f7c84c53b
ssdeep: 384:OzsMBDvDU+851o0N2+/8Rc4rcv2xL6dgpXhNTdos:OzIX1d7/2c4gvwL6dEXhN9
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T108338FD71A09BBEBC6A40074252149CB9AF7F676027A4933FECC46AFEEF21709155780
sha3_384: d11cd88a0c7079138f585932ddbc5828dd2ca312f2a399ce89e9a4f522da6081137ddb8a289d0a18ac9d6750a9e771b5
ep_bytes: 60be00504b008dbe00c0f4ff5783cdff
timestamp: 2017-06-26 12:46:56

Version Info:
0: [No Data]

Malware.AI.2339809729 also known as:

Bkav	W32.AIDetect.malware1
Elastic	malicious (moderate confidence)
MicroWorld-eScan	Gen:Variant.Fragtor.92788
FireEye	Generic.mg.cf7c06bbb3295310
ALYac	Gen:Variant.Fragtor.92788
Cylance	Unsafe
Sangfor	Suspicious.Win32.Save.a
Alibaba	TrojanDropper:Application/ShellCode.24d08454
CrowdStrike	win/malicious_confidence_90% (W)
APEX	Malicious
Paloalto	generic.ml
Kaspersky	UDS:Trojan.Multi.GenericML.xnet
BitDefender	Gen:Variant.Fragtor.92788
Avast	Sf:ShellCode-GH [Trj]
Ad-Aware	Gen:Variant.Fragtor.92788
Emsisoft	Gen:Variant.Fragtor.92788 (B)
McAfee-GW-Edition	BehavesLike.Win32.Generic.qz
Trapmine	malicious.high.ml.score
Sophos	Generic ML PUA (PUA)
Ikarus	Trojan-Dropper.Agent
GData	Gen:Variant.Fragtor.92788
Jiangmin	Trojan.Multi.jvj
Avira	TR/Crypt.ULPM.Gen
Arcabit	Trojan.Fragtor.D16A74
Microsoft	Trojan:Win32/Wacatac.B!ml
Cynet	Malicious (score: 100)
AhnLab-V3	Trojan/Win.Generic.C5168756
McAfee	RDN/Real Protect-LS
MAX	malware (ai score=89)
Malwarebytes	Malware.AI.2339809729
TrendMicro-HouseCall	TROJ_GEN.R002H0CFB22
Rising	Trojan.Generic!8.C3 (C64:YzY0Oiu3umrbVWho)
SentinelOne	Static AI – Malicious PE
MaxSecure	Trojan.Malware.82199810.susgen
Fortinet	W32/ULPM.16C0!tr
BitDefenderTheta	Gen:NN.ZexaF.34712.dmW@aK8L7an
AVG	Sf:ShellCode-GH [Trj]
Cybereason	malicious.c13e8b

How to remove Malware.AI.2339809729?

Malware.AI.2339809729 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X