Malware

Should I remove “Malware.AI.2389804538”?

Malware Removal

The Malware.AI.2389804538 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.2389804538 virus can do?

  • At least one process apparently crashed during execution
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid

How to determine Malware.AI.2389804538?



File Info:

name: 3C7B92D48151722A356E.mlw
path: /opt/CAPEv2/storage/binaries/2fea9d6310c64d349f0c9c1fa26fb0749346d801978c026600ca3beac82cfa4b
crc32: B802847D
md5: 3c7b92d48151722a356e8a6ab628d053
sha1: 1d674aef633141ee3721fb243a5acc920cff7cae
sha256: 2fea9d6310c64d349f0c9c1fa26fb0749346d801978c026600ca3beac82cfa4b
sha512: f9334aee2c95c0ec15247a2403d26056715f9333b3d18367af48bffc64707d0162fda2c786307661b3978e29ae072f52ac0c51ea30048b1329b0470fa532a9ff
ssdeep: 1536:qXyvneuoO6bIxxm/AhCqiTWSsGR6iXQ8RiQWqiHfcqtts2GD6zi:qqneDbuxcfF3R6kiQWqGthG+zi
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1FA939D9AF09284F2E17308BC8C17AAE5923976B06D7D587379D20F4D69ED1C36A1D383
sha3_384: 62b468e0da684735bfd88fcbc669e5d432074c5129d7456348e977d5dc0e79b7a22009f6fee78fede739aba1ad4214db
ep_bytes: 558becb9650000006a006a004975f953
timestamp: 1987-01-30 03:38:08


Version Info:

0: [No Data]

Malware.AI.2389804538 also known as:

BkavW32.AIDetect.malware1
tehtrisGeneric.Malware
MicroWorld-eScanGeneric.Malware.FPfg.8D4FD371
FireEyeGeneric.mg.3c7b92d48151722a
CAT-QuickHealW32.Virut.D
ALYacGeneric.Malware.FPfg.8D4FD371
CylanceUnsafe
SangforTrojan.Win32.Save.a
K7AntiVirusEmailWorm ( 003c03451 )
K7GWEmailWorm ( 003c03451 )
Cybereasonmalicious.481517
BaiduWin32.Trojan.KillAV.y
VirITWin32.Cheburgen.A
CyrenW32/Agent.S.gen!Eldorado
SymantecW32.Buzus
Elasticmalicious (high confidence)
ESET-NOD32multiple detections
APEXMalicious
ClamAVWin.Trojan.Virut-23
KasperskyHEUR:Trojan.Win32.Generic
BitDefenderGeneric.Malware.FPfg.8D4FD371
NANO-AntivirusTrojan.Win32.Agent.qxtyp
AvastWin32:Perkesh-D [Rtk]
TencentTrojan.Win32.KillAV.sb
Ad-AwareGeneric.Malware.FPfg.8D4FD371
EmsisoftGeneric.Malware.FPfg.8D4FD371 (B)
ComodoTrojWare.Win32.TrojanDownloader.Delf.gen@1xqow5
DrWebWin32.HLLW.Autoruner.54314
TrendMicroWORM_YMINKY.SMRP
McAfee-GW-EditionBehavesLike.Win32.PWSLegMir.nc
Trapminemalicious.high.ml.score
SophosML/PE-A + Mal/Dropper-G
SentinelOneStatic AI – Malicious PE
GDataGeneric.Malware.FPfg.8D4FD371
JiangminWorm/Generic.jgq
AviraW32/Virut.Gen
ArcabitGeneric.Malware.FPfg.8D4FD371
MicrosoftTrojan:Win32/Wacatac.B!ml
CynetMalicious (score: 100)
AhnLab-V3Win-Trojan/Hupigon.Gen
McAfeeW32/Autorun.worm.bby
MAXmalware (ai score=82)
VBA32MalwareScope.Trojan-PSW.Game.16
MalwarebytesMalware.AI.2389804538
TrendMicro-HouseCallWORM_YMINKY.SMRP
RisingTrojan.KillAV!1.9D95 (CLASSIC)
IkarusTrojan-PWS.Win32.Lmir
MaxSecureTrojan.CodecPack.Gen
FortinetW32/Injector.fam!tr
BitDefenderThetaAI:Packer.AAD8B09119
AVGWin32:Perkesh-D [Rtk]
PandaTrj/Genetic.gen
CrowdStrikewin/malicious_confidence_100% (W)

How to remove Malware.AI.2389804538?

Malware.AI.2389804538 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment