How to remove “Malware.AI.2422420267”?

The Malware.AI.2422420267 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.2422420267 virus can do?

SetUnhandledExceptionFilter detected (possible anti-debug)
Presents an Authenticode digital signature
Authenticode signature is invalid
Anomalous binary characteristics

How to determine Malware.AI.2422420267?


File Info:
name: 5138883469F163BA0C54.mlw
path: /opt/CAPEv2/storage/binaries/b88f081df6d64350b943c6398238866272ae1a76cb318e1ad0be538d450e9337
crc32: EC3195BE
md5: 5138883469f163ba0c5492d3e6f7d2c4
sha1: 2889e36e4a0b8119f1e1250066a6fe2543ac804d
sha256: b88f081df6d64350b943c6398238866272ae1a76cb318e1ad0be538d450e9337
sha512: 5ef2402bf95d2440a410787681f5fd3cb098d8b3484cc73ba4c3225b242028e662fc2d2fb3aed76a4e117c54228a03876cf4276d45e02fb69b61dcc00a045c58
ssdeep: 49152:O46ljNrOO53RTqtilrOO53RTqtiw3hbuRKwpBThKPgssSt2gzcY/UfbWWhipXq:grOO53FrOO53Q3HMhv7StiJio
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1F0564C0263A58172D0B6567069A197565A717DA05F33CACF73807E9EFE72BC04BB2332
sha3_384: 792506843c718e5c39f80be2b3716a68ecc24430355e3f8ff43bfd1b28b76b81c01b2cc701d59936ea9b3314b612bf77
ep_bytes: e872200000e916feffff3b0d90040230
timestamp: 2006-10-26 21:00:59

Version Info:
CompanyName: Microsoft Corporation
FileDescription: Office Source Engine
FileVersion: 12.0.4518.1014
InternalName: ose
LegalCopyright: © 2006 Microsoft Corporation.  All rights reserved.
LegalTrademarks1: Microsoft® is a registered trademark of Microsoft Corporation.
LegalTrademarks2: Windows® is a registered trademark of Microsoft Corporation.
OriginalFilename: ose.exe
ProductName: Office Source Engine
ProductVersion: 12.0.4518.1014
Translation: 0x0000 0x04e4

Malware.AI.2422420267 also known as:

Bkav	W32.AIDetect.malware1
Elastic	malicious (high confidence)
FireEye	Generic.mg.5138883469f163ba
Malwarebytes	Malware.AI.2422420267
Sangfor	Trojan.Win32.Save.a
CrowdStrike	win/malicious_confidence_60% (W)
Cyren	W32/Emotet.BBS.gen!Eldorado
Symantec	ML.Attribute.HighConfidence
Avast	Win32:Malware-gen
Cynet	Malicious (score: 100)
McAfee-GW-Edition	BehavesLike.Win32.Expiro.tm
Sophos	ML/PE-A
GData	Win32.Trojan.PSE.TLQCHU
Microsoft	Trojan:Win32/Wacatac.B!ml
McAfee	Artemis!5138883469F1
VBA32	Trojan.Downloader
APEX	Malicious
SentinelOne	Static AI – Malicious PE
eGambit	Unsafe.AI_Score_99%
Fortinet	W32/Ipamor.9A84!tr
AVG	Win32:Malware-gen

How to remove Malware.AI.2422420267?

Malware.AI.2422420267 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X