Malware

Should I remove “Malware.AI.2537448630”?

Malware Removal

The Malware.AI.2537448630 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.2537448630 virus can do?

  • Possible date expiration check, exits too soon after checking local time
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid
  • Network activity detected but not expressed in API logs

How to determine Malware.AI.2537448630?



File Info:

name: A4889FF25FEEAC217D65.mlw
path: /opt/CAPEv2/storage/binaries/d9b7cfce92c80147086ec165bc109cea6ece9b97d37fdeb67a176def79d9a752
crc32: F8090907
md5: a4889ff25feeac217d6552edf03dfafd
sha1: afde82957db7ce22890f7a377189f64eaafbd140
sha256: d9b7cfce92c80147086ec165bc109cea6ece9b97d37fdeb67a176def79d9a752
sha512: 34f99b8435c9efcc052f114186805fc747653d8417e991764822ea20bf0c8fed74e56ac89475d60a790c08bf071567ba30bcc00851f2d7514296ab9ca799c875
ssdeep: 24:OEhu70qGe++ORYYp/UrbUt3tqQeaNOAAB:OEPqX++ORYS/6bKyB
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T1EC73557FBA94E9B2C24808373458C476B279C13D0267DBB20B75E6096CD7534DC7AAD8
sha3_384: 03063bcd2a0783274c3a7a573fab968b3881561a38d6c38102726739813510b0eb109b3fe91a204fc1ac6b3b8e9e8f81
ep_bytes: 90909090909090909090909090909090
timestamp: 1997-02-19 16:12:41


Version Info:

0: [No Data]

Malware.AI.2537448630 also known as:

LionicTrojan.Win32.Generic.4!c
Elasticmalicious (high confidence)
FireEyeGeneric.mg.a4889ff25feeac21
McAfeeArtemis!A4889FF25FEE
CylanceUnsafe
CrowdStrikewin/malicious_confidence_80% (W)
BitDefenderThetaGen:NN.ZexaF.34294.eqW@aqLabch
SymantecPacked.Generic.99
Paloaltogeneric.ml
AvastWin32:SwPatch [Wrm]
RisingTrojan.Generic@ML.88 (RDML:vBCtmJMtwEbojoqamKaZ9A)
SophosML/PE-A
ComodoTrojWare.Win32.MalPack.PKB@1rava1
VIPRETrojan.Win32.Generic!BT
SentinelOneStatic AI – Suspicious PE
IkarusVirus.Win32.Undertaker
JiangminTrojan/Undertaker.a
eGambitUnsafe.AI_Score_100%
AviraHEUR/AGEN.1118338
MicrosoftTrojan:Win32/Wacatac.B!ml
GridinsoftRansom.Win32.Wacatac.sa
ViRobotTrojan.Win32.Tdss.20480.IZ
GDataWin32.Trojan.Agent.SOH1G6
CynetMalicious (score: 100)
AhnLab-V3Trojan/Win32.Xema.C111882
MalwarebytesMalware.AI.2537448630
APEXMalicious
YandexTrojan.GenAsa!YwaN1XnQa2M
AVGWin32:SwPatch [Wrm]

How to remove Malware.AI.2537448630?

Malware.AI.2537448630 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment