Malware.AI.2558465166 information

The Malware.AI.2558465166 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.2558465166 virus can do?

The binary contains an unknown PE section name indicative of packing
Executable file is packed/obfuscated with MPRESS
Authenticode signature is invalid

How to determine Malware.AI.2558465166?


File Info:
name: 3BF3F0BE7E48F4040B4D.mlw
path: /opt/CAPEv2/storage/binaries/9151ad4e79a74d5f4867a7360a29091469033f7192779af39f618c7d3d2dee60
crc32: 11FB8935
md5: 3bf3f0be7e48f4040b4d177b19520bdd
sha1: 3460aaecf0a280177ceee2562f845998278e0a3f
sha256: 9151ad4e79a74d5f4867a7360a29091469033f7192779af39f618c7d3d2dee60
sha512: 8219e7c138ff1f616d09e34c644784f08bf518f6b9c4c1d49a31d927d4ea0fd5244643f2fe7e1b3f0bf663d2544cf45a1e51881abe77431970dc9fcfb367208a
ssdeep: 3072:3+R6WFl8shuOOC9bi9ofki4yZG26ZShtGwk+x0pfs4k1PUkYoImfOqV:+5h3PhSdwk+OSXnYom
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1CFF34C76E590C837D3222D78EC0E9954E81ABE903E1D254B7BEE5D4C4E3D7D239280E6
sha3_384: 6074383a7d2447a61e69d5fc10343f8a7a2c23dc0255d436312fc2d1d62a7ae9fb9dbe04248f9352fea3bb1880e18085
ep_bytes: e9560b00000058055a0b00008b3003f0
timestamp: 1992-06-19 22:22:17

Version Info:
Comments: http://www.bome.com
FileDescription: Icon changer package
FileVersion: 1.0
InternalName: IconChange
LegalCopyright: © 1998 by Florian Bömers
OriginalFilename: IconChange.dpk
ProductVersion: 1.0
Translation: 0x0409 0x04e4

Malware.AI.2558465166 also known as:

Lionic	Trojan.Win32.Malicious.4!c
tehtris	Generic.Malware
ClamAV	Win.Ransomware.Generic-9918322-0
McAfee	GenericRXAA-AA!3BF3F0BE7E48
Sangfor	Trojan.Win32.Save.a
K7AntiVirus	Trojan ( 0052964f1 )
K7GW	Trojan ( 0052964f1 )
Cybereason	malicious.cf0a28
Elastic	malicious (high confidence)
APEX	Malicious
Cynet	Malicious (score: 100)
Alibaba	TrojanPSW:Win32/Generic.c84b73d6
Rising	Trojan.Generic@AI.88 (RDML:7CPPTIdzzvBXpTwEEXB3dw)
F-Secure	Heuristic.HEUR/AGEN.1211693
Trapmine	malicious.high.ml.score
FireEye	Generic.mg.3bf3f0be7e48f404
Sophos	Generic ML PUA (PUA)
Jiangmin	Trojan/Refroso.afgk
Avira	HEUR/AGEN.1211693
Microsoft	Trojan:Win32/Wacatac.B!ml
AhnLab-V3	Trojan/Win32.Banbra.R259320
Malwarebytes	Malware.AI.2558465166
MaxSecure	Trojan.Malware.83485344.susgen
Fortinet	W32/Banker!tr.pws
BitDefenderTheta	Gen:NN.ZelphiF.34712.jm0@aGpYVEge
AVG	Win32:Malware-gen
Avast	Win32:Malware-gen
CrowdStrike	win/malicious_confidence_70% (W)

How to remove Malware.AI.2558465166?

Malware.AI.2558465166 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X