Malware.AI.2504151262 malicious file

The Malware.AI.2504151262 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.2504151262 virus can do?

Dynamic (imported) function loading detected
Authenticode signature is invalid
Anomalous .NET characteristics

How to determine Malware.AI.2504151262?


File Info:
name: 495083F8C920DA502F37.mlw
path: /opt/CAPEv2/storage/binaries/3cb1cf0d15116eb2ecf0bf153f8a707d33011cafacf070a87657bf0acb76687a
crc32: 90047499
md5: 495083f8c920da502f370d842697b471
sha1: 6ac0deb8ce17912729fa017bd5504cb446207d23
sha256: 3cb1cf0d15116eb2ecf0bf153f8a707d33011cafacf070a87657bf0acb76687a
sha512: 13c1903f9224712c1124c51c6107efc6de3822df98034895eda49ff8889cdaf398fdd41f0c4f5026712d101ad5e06b16d6840c561be087b180ebac034131bbed
ssdeep: 384:sxiHABz9q3FxmHu+JjOdumH7dcDNTtJxzSZy1Pgr9aeefcpMQiW4zmkZXOfq1oKi:sCIFqH50B/1P/XbOfq1Kkgtq4
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1ABF23B04BB9CC11FE6EF4F7D79621A61027693931302D7D65DCD68EEA8A77440A01BD3
sha3_384: 41ee1afd1bb9f97f9210d1b6af22ce884fd4412df644d379f6605131fdab582d7e6a488c4ba83bac5f8458b9b6f8c605
ep_bytes: ff250020400000000000000000000000
timestamp: 2022-07-20 14:01:38

Version Info:
Translation: 0x0000 0x04b0
FileDescription:  
FileVersion: 0.0.0.0
InternalName: pay.exe
LegalCopyright:  
OriginalFilename: pay.exe
ProductVersion: 0.0.0.0
Assembly Version: 0.0.0.0

Malware.AI.2504151262 also known as:

Bkav	W32.AIDetectNet.01
Lionic	Trojan.PowerShell.Generic.4!c
MicroWorld-eScan	Trojan.GenericKD.49398411
FireEye	Generic.mg.495083f8c920da50
ALYac	Trojan.GenericKD.49398411
Cylance	Unsafe
Sangfor	Trojan.Win32.Agent.Vvq8
K7AntiVirus	Trojan ( 005922c01 )
Alibaba	Trojan:Win32/Kryptik.7c284815
K7GW	Trojan ( 005922c01 )
Cyren	W32/Trojan.GPA.gen!Eldorado
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (moderate confidence)
ESET-NOD32	PowerShell/Kryptik.DZ
APEX	Malicious
ClamAV	Win.Dropper.Detected-9956421-0
Kaspersky	HEUR:Trojan.PowerShell.Generic
BitDefender	Trojan.GenericKD.49398411
Avast	Win32:Trojan-gen
Tencent	Win32.Trojan.Generic.Pdci
Ad-Aware	Trojan.GenericKD.49398411
Emsisoft	Trojan.GenericKD.49398411 (B)
VIPRE	Trojan.GenericKD.49398411
Trapmine	malicious.high.ml.score
Sophos	Mal/Generic-S
SentinelOne	Static AI – Malicious PE
GData	Trojan.GenericKD.49398411
Avira	TR/Crypt.Agent.yzlzv
Kingsoft	Win32.Troj.Undef.(kcloud)
ZoneAlarm	HEUR:Trojan.PowerShell.Generic
Microsoft	Trojan:Win32/Wacatac.B!ml
Cynet	Malicious (score: 100)
AhnLab-V3	Malware/Win32.RL_Generic.C4263917
McAfee	RDN/Generic.hbg
MAX	malware (ai score=81)
Malwarebytes	Malware.AI.2504151262
Rising	Trojan.Kryptik!1.DB9C (CLASSIC)
Fortinet	PowerShell/Kryptik.DZ!tr
BitDefenderTheta	Gen:NN.ZemsilF.34806.cm0@a8VK8Ff
AVG	Win32:Trojan-gen
CrowdStrike	win/malicious_confidence_100% (W)

How to remove Malware.AI.2504151262?

Malware.AI.2504151262 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X