Malware.AI.2540241887 (file analysis)

The Malware.AI.2540241887 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.2540241887 virus can do?

The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid
Anomalous binary characteristics

How to determine Malware.AI.2540241887?


File Info:
name: FB4B8282C932797D7FD3.mlw
path: /opt/CAPEv2/storage/binaries/1335178f8ec83d1f68623d79c307128337dd57c7341f8c05c534e59f0108da83
crc32: CBA9A046
md5: fb4b8282c932797d7fd39de77053b4b9
sha1: 2c0a288cef18513d20b971533f192cd16d298a59
sha256: 1335178f8ec83d1f68623d79c307128337dd57c7341f8c05c534e59f0108da83
sha512: da3a2a43fdbb00a915fa87511dc869ffbebefa1f08083394f5fa000396cdcbb8eb05b3de039d12c45980d17a298a38c8cf57f366a7789981571074779d212148
ssdeep: 12288:GbruxxSStw6VRT4aqp1E5eJpfg4tUT6QQK7Xtu0hl4UEdtLj6kWeayOtrD38L4ug:GbruxxSStw6VRT4aqp1E5eJpfg4tUT6u
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1F2C4C82FB7451772028203A23A0F99D6F72E9579237A89E0646CC01D2367E7C93BB7D5
sha3_384: 1f71adbfedf2f374349f1279d976025b8883bd3e904ccfaf9fed3fe031e73cbbf5ba48ef94f9374347544007cfeec075
ep_bytes: 6f6e732070726f6772616d732e20596f
timestamp: 1970-01-01 00:00:00

Version Info:
0: [No Data]

Malware.AI.2540241887 also known as:

Elastic	malicious (high confidence)
MicroWorld-eScan	Trojan.GenericKD.67044207
FireEye	Generic.mg.fb4b8282c932797d
McAfee	Artemis!FB4B8282C932
Malwarebytes	Malware.AI.2540241887
VIPRE	Trojan.GenericKD.67044207
Sangfor	Trojan.Win32.Kryptik.V6it
K7AntiVirus	Trojan ( 005a14721 )
K7GW	Trojan ( 005a14721 )
Cybereason	malicious.cef185
BitDefenderTheta	Gen:NN.ZexaF.36196.IWW@ayf8o1d
Cyren	W32/Khalesi.J.gen!Eldorado
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win32/GenKryptik_AGen.WI
APEX	Malicious
ClamAV	Win.Packed.Lazy-10001745-0
BitDefender	Trojan.GenericKD.67044207
Avast	Win32:Evo-gen [Trj]
Tencent	Win32.Trojan.Crypt.Jjgl
Emsisoft	Trojan.GenericKD.67044207 (B)
F-Secure	Trojan.TR/Crypt.XPACK.Gen
Zillya	Trojan.GenKryptikAGen.Win32.1783
McAfee-GW-Edition	BehavesLike.Win32.Generic.ht
Trapmine	malicious.moderate.ml.score
GData	Trojan.GenericKD.67044207
Google	Detected
Avira	TR/Crypt.XPACK.Gen
MAX	malware (ai score=86)
Antiy-AVL	Trojan/Win32.GenKryptik
Arcabit	Trojan.Generic.D3FF036F
Microsoft	Trojan:Win32/Wacatac.B!ml
Cynet	Malicious (score: 100)
TrendMicro-HouseCall	TROJ_GEN.R002H0AEE23
Rising	Trojan.Kryptik!8.8 (CLOUD)
Fortinet	W32/Razy.373115!dam
AVG	Win32:Evo-gen [Trj]
DeepInstinct	MALICIOUS
CrowdStrike	win/malicious_confidence_100% (D)

How to remove Malware.AI.2540241887?

Malware.AI.2540241887 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X