Malware

Malware.AI.2478496914 removal tips

Malware Removal

The Malware.AI.2478496914 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.2478496914 virus can do?

  • Executable code extraction
  • Creates RWX memory
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX
  • Likely installs a bootkit via raw harddisk modifications
  • Attempts to restart the guest VM
  • Network activity detected but not expressed in API logs

How to determine Malware.AI.2478496914?



File Info:

crc32: EED6F674
md5: 9eabd98f03110d2947bbf44ed44e669c
name: 9EABD98F03110D2947BBF44ED44E669C.mlw
sha1: 8ed612221d70cbc40d5dbfb2d407bc882032fc1b
sha256: d9f95f8416970d6b17136272aec63d300f35997d8155d41f445bb6764abe7bb7
sha512: fb5818b6f864692db2f927d141337c8e9740271c757469d3c7b5a4d126917c34098779f7a04724045f2029069594299e5dc855c1bfc5c0d6697a62102815c8a4
ssdeep: 3072:cU5EoM8ms9OuDVqkkGguPu+jKUd7as1dI0X:h5VLtVvrnPdGM
type: PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed


Version Info:

0: [No Data]

Malware.AI.2478496914 also known as:

BkavW32.AIDetect.malware2
Elasticmalicious (high confidence)
MicroWorld-eScanTrojan.Ransom.Petya.C
ALYacTrojan.Ransom.Petya.C
CylanceUnsafe
ZillyaTrojan.Ransom.Win32.452
K7AntiVirusTrojan ( 004e14a51 )
BitDefenderTrojan.Ransom.Petya.C
K7GWTrojan ( 004e14a51 )
Cybereasonmalicious.f03110
ArcabitTrojan.Ransom.Petya.C
SymantecRansom.Petya
APEXMalicious
ClamAVWin.Trojan.Petya-5637914-0
KasperskyHEUR:Trojan.Win32.Generic
NANO-AntivirusTrojan.Win32.MBRlock.eqehil
TencentMalware.Win32.Gencirc.1169a568
Ad-AwareTrojan.Ransom.Petya.C
SophosATK/Shellter-AC
F-SecureTrojan:W32/Petya.A
DrWebTrojan.Ransom.369
FireEyeGeneric.mg.9eabd98f03110d29
EmsisoftTrojan.Ransom.Petya.C (B)
SentinelOneStatic AI – Malicious PE
JiangminTrojanRansom.Petr.a
AviraHEUR/AGEN.1124677
MAXmalware (ai score=83)
MicrosoftTrojan:Win32/Wacatac.B!ml
ZoneAlarmHEUR:Trojan.Win32.Generic
GDataTrojan.Ransom.Petya.C
CynetMalicious (score: 100)
AhnLab-V3Trojan/Win32.RL_Petr.R285840
TACHYONRansom/W32.Petya.230912
VBA32Trojan.Ransom
MalwarebytesMalware.AI.2478496914
ESET-NOD32Win32/Diskcoder.Petya.A
RisingRansom.Petya!8.48D7 (TFE:dGZlOgVBWZVoOJx5jQ)
YandexTrojan.GenAsa!m4HJ52leM9Q
IkarusTrojan-Ransom.PetYa
FortinetW32/Petya.EOB!tr.ransom
BitDefenderThetaGen:NN.ZexaF.34590.hmGfaWLkflki
AVGWin32:Evo-gen [Susp]
AvastWin32:Evo-gen [Susp]
Qihoo-360HEUR/QVM11.1.94EE.Malware.Gen

How to remove Malware.AI.2478496914?

Malware.AI.2478496914 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment