Malware.AI.2392218498 (file analysis)

The Malware.AI.2392218498 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.2392218498 virus can do?

Authenticode signature is invalid
Anomalous .NET characteristics

How to determine Malware.AI.2392218498?


File Info:
name: D146DEB2BA2513228F87.mlw
path: /opt/CAPEv2/storage/binaries/71ddae0bbb7621fb17f1bf476b567483d439ae7207737b5c84920422b09fdde7
crc32: C630EDF2
md5: d146deb2ba2513228f87277328280481
sha1: 78a5c61457211ae0ffde5594606640d146a61239
sha256: 71ddae0bbb7621fb17f1bf476b567483d439ae7207737b5c84920422b09fdde7
sha512: 5d4c98790ae426a5a030636b2ea653f8de577ca17d7992845df61aec7914ea9545555ba1b93ed8104ee51729422100ef09b4f3ff46a1a0faae9484d3b1a8eda4
ssdeep: 384:71k0ky9ZhzvbqPgDNF3Vi9Zgas/5BtXiPmPFBTvXXPm+PP+yX/2qfP/mLn22X+XJ:DkQZhzvbqqF3V8gHNmw5vXXPm+PP+yXR
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T1A892A43663898672C1EBCB3658D715432370AAC68613DBDF389DA37F5B5238A841239D
sha3_384: a84b250acf51a244312d09ec7e704bbfbf10cae35007ddabb5f9d11cb98e5a63f5d21942a68ffe7907d6af362a2d5eec
ep_bytes: ff250020400000000000000000000000
timestamp: 2022-08-24 01:53:47

Version Info:
Translation: 0x0000 0x04b0
FileDescription:  
FileVersion: 0.0.0.0
InternalName: test.exe
LegalCopyright:  
OriginalFilename: test.exe
ProductVersion: 0.0.0.0
Assembly Version: 0.0.0.0

Malware.AI.2392218498 also known as:

Bkav	W32.AIDetectNet.01
Elastic	malicious (high confidence)
MicroWorld-eScan	Gen:Variant.Ursu.270402
FireEye	Generic.mg.d146deb2ba251322
Cylance	Unsafe
VIPRE	Gen:Variant.Ursu.270402
Sangfor	Suspicious.Win32.Save.a
Cybereason	malicious.2ba251
Cyren	W32/MSIL_Troj.C.gen!Eldorado
Symantec	ML.Attribute.HighConfidence
tehtris	Generic.Malware
ESET-NOD32	a variant of MSIL/Injector.VXS
ClamAV	Win.Packed.Msilzilla-9966111-0
Kaspersky	HEUR:Trojan.Win32.Generic
BitDefender	Gen:Variant.Ursu.270402
Cynet	Malicious (score: 100)
Avast	FileRepMalware [Misc]
Ad-Aware	Gen:Variant.Ursu.270402
Emsisoft	Gen:Variant.Ursu.270402 (B)
F-Secure	Trojan.TR/Dropper.Gen
DrWeb	Trojan.InjectNET.30
Trapmine	malicious.high.ml.score
APEX	Malicious
GData	Gen:Variant.Ursu.270402
Avira	TR/Dropper.Gen
MAX	malware (ai score=86)
Arcabit	Trojan.Ursu.D42042
ZoneAlarm	HEUR:Trojan.Win32.Generic
Microsoft	Trojan:Win32/Woreflint.A!cl
Google	Detected
AhnLab-V3	Trojan/Win32.Bladabindi.C2498852
Acronis	suspicious
ALYac	Gen:Variant.Ursu.270402
Malwarebytes	Malware.AI.2392218498
Ikarus	Trojan-Spy.Agent
Rising	Trojan.Generic/MSIL@AI.90 (RDM.MSIL:cAcFNsB5wueuO7z/pH+xuQ)
SentinelOne	Static AI – Malicious PE
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	MSIL/Agent.D498!tr
AVG	FileRepMalware [Misc]
CrowdStrike	win/malicious_confidence_100% (W)

How to remove Malware.AI.2392218498?

Malware.AI.2392218498 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X