Malware

Malware.AI.2481099610 malicious file

Malware Removal

The Malware.AI.2481099610 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.2481099610 virus can do?

  • Executable code extraction
  • Attempts to connect to a dead IP:Port (1 unique times)
  • Creates RWX memory
  • Anomalous binary characteristics

Related domains:

z.whorecord.xyz
a.tomx.xyz

How to determine Malware.AI.2481099610?



File Info:

crc32: 711E180B
md5: 78a42cb08d8dceaedb163799152a6e2c
name: 78A42CB08D8DCEAEDB163799152A6E2C.mlw
sha1: baecfa4ca071a586d6e3cf24e4c4e6250b008682
sha256: ac78219efa91ad23e4ca4220027b27af1da2fb7dd52cea61e19ca9c4aa044057
sha512: b14a9ffaac061dd9eb8c5f5bf136cad7ae6f272db8169aac0e4edaf5c4bc1376660f2012084eb8dad4f8867f1468c78773be91d8e515e7a47acbeac2cf14ccb3
ssdeep: 192:Q8HMKkizoBshdNo7MREjufcW/6Pkrc2+gTUupD91avW7I6dKh/Qqz6cSCbV4:9HHeshdNo6vT9UuN91aO79SzvSGV4
type: PE32 executable (console) Intel 80386 Mono/.Net assembly, for MS Windows


Version Info:

Translation: 0x007f 0x04b0
LegalCopyright:  
InternalName: dropper_cs_ps_v2
FileVersion: 0.0.0.0
CompanyName:  
LegalTrademarks:  
Comments:  
ProductName:  
ProductVersion:  
FileDescription:  
OriginalFilename: dropper_cs_ps_v2.exe

Malware.AI.2481099610 also known as:

Elasticmalicious (high confidence)
ALYacGen:Variant.Barys.55567
MalwarebytesMalware.AI.2481099610
SangforTrojan.Win32.Save.a
BitDefenderGen:Variant.Barys.55567
ArcabitTrojan.Barys.DD90F
ESET-NOD32a variant of MSIL/TrojanDropper.Agent.FBA
APEXMalicious
CynetMalicious (score: 85)
KasperskyHEUR:Trojan.MSIL.Alien.gen
MicroWorld-eScanGen:Variant.Barys.55567
Ad-AwareGen:Variant.Barys.55567
SophosATK/PoshC2-A
F-SecureHeuristic.HEUR/AGEN.1106254
McAfee-GW-EditionGenericRXMX-MH!78A42CB08D8D
FireEyeGeneric.mg.78a42cb08d8dceae
EmsisoftGen:Variant.Barys.55567 (B)
AviraHEUR/AGEN.1106254
MAXmalware (ai score=88)
MicrosoftTrojan:Win32/Wacatac.B!ml
ZoneAlarmHEUR:Trojan.MSIL.Alien.gen
GDataGen:Variant.Barys.55567
AhnLab-V3Trojan/Win32.RL_Generic.C4212644
McAfeeGenericRXMX-MH!78A42CB08D8D
PandaTrj/GdSda.A
BitDefenderThetaGen:NN.ZemsilF.34574.am0@ayMaVno
AVGWin32:TrojanX-gen [Trj]
Cybereasonmalicious.08d8dc
AvastWin32:TrojanX-gen [Trj]

How to remove Malware.AI.2481099610?

Malware.AI.2481099610 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment