Should I remove “Malware.AI.2541459517”?

The Malware.AI.2541459517 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.2541459517 virus can do?

Dynamic (imported) function loading detected
Authenticode signature is invalid
Binary compilation timestomping detected

How to determine Malware.AI.2541459517?


File Info:
name: F61E1DC7032D4505B78B.mlw
path: /opt/CAPEv2/storage/binaries/87f664e249db8b0e63c761e467875caa2a2526cf37f4718c11e89be0313f0963
crc32: 9DFC3440
md5: f61e1dc7032d4505b78b47d52a1a8968
sha1: cc500217ada05ebf81fb68c840771c849914638b
sha256: 87f664e249db8b0e63c761e467875caa2a2526cf37f4718c11e89be0313f0963
sha512: 7b8f079537aeb181c541714353a0f9d040be8f70d2b0baaa168f5f297f0c45430abc12414baa9f0c6d4330267e0f3011a9e47cf0748935079fcc7130809d6b09
ssdeep: 192:Xkn5Vd999999999999999999999999999999999999999999999999999999999/:Xkn5hm5s
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T17992BE68ADD84311E07F7B366CB163C0A73E73926D316D2FA842812E1C39A42C5B873D
sha3_384: 0f91dee65be75ae0359eb2cd819b92bba0f733b112ea2a3a7606bcfd627a5fee91278cd6f42608827bab230370b3e3ec
ep_bytes: ff250020400000000000000000000000
timestamp: 2057-03-04 15:27:58

Version Info:
Translation: 0x0000 0x04b0
Comments: editor with encryption features
CompanyName: wr
FileDescription: LIOlL
FileVersion: 1.0.0.0
InternalName: TEST.exe
LegalCopyright: Copyright ©  2021
OriginalFilename: TEST.exe
ProductName: uwrwr
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

Malware.AI.2541459517 also known as:

Lionic	Trojan.MSIL.Fsysna.4!c
Elastic	malicious (high confidence)
MicroWorld-eScan	Trojan.GenericKD.38218477
FireEye	Trojan.GenericKD.38218477
CAT-QuickHeal	Trojan.MSIL
ALYac	Trojan.GenericKD.38218477
Cylance	Unsafe
Cybereason	malicious.7ada05
BitDefenderTheta	Gen:NN.ZemsilF.34084.bm0@a4lnMGd
Symantec	ML.Attribute.HighConfidence
TrendMicro-HouseCall	TROJ_GEN.R002C0WLA21
Paloalto	generic.ml
Cynet	Malicious (score: 100)
Kaspersky	HEUR:Trojan.MSIL.Fsysna.gen
BitDefender	Trojan.GenericKD.38218477
Avast	Win32:TrojanX-gen [Trj]
Ad-Aware	Trojan.GenericKD.38218477
TrendMicro	TROJ_GEN.R002C0WLA21
Emsisoft	Trojan.GenericKD.38218477 (B)
MAX	malware (ai score=87)
Gridinsoft	Ransom.Win32.Sabsik.sa
Arcabit	Trojan.Generic.D2472AED
ViRobot	Trojan.Win32.Z.Agent.19968.UMK
GData	Trojan.GenericKD.38218477
AhnLab-V3	Trojan/Win.Generic.C4845719
McAfee	Artemis!F61E1DC7032D
VBA32	TScope.Trojan.MSIL
Malwarebytes	Malware.AI.2541459517
APEX	Malicious
SentinelOne	Static AI – Suspicious PE
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	PossibleThreat
AVG	Win32:TrojanX-gen [Trj]
Panda	Trj/CI.A
CrowdStrike	win/malicious_confidence_60% (W)

How to remove Malware.AI.2541459517?

Malware.AI.2541459517 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X