Should I remove “Malware.AI.2563956906”?

The Malware.AI.2563956906 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.2563956906 virus can do?

Dynamic (imported) function loading detected
Authenticode signature is invalid
Binary compilation timestomping detected

How to determine Malware.AI.2563956906?


File Info:
name: 54C1EB972690ED60C014.mlw
path: /opt/CAPEv2/storage/binaries/4c2b6cf3e72f1093dca916dc5de12621f05e79392fed5761ea96a39c909bdeb1
crc32: A22156E3
md5: 54c1eb972690ed60c014325b0b91ccd2
sha1: 0892764a8b7cd93b03bd08750d8f98c76f8e630e
sha256: 4c2b6cf3e72f1093dca916dc5de12621f05e79392fed5761ea96a39c909bdeb1
sha512: e26eef4910426fd6f910ba22d999de332cc1fe667d1a95ffe7b9a8cefa420133638a533e093f7c838d203b4b8675f1dbf8cba009f1951ab5990beb34916bf754
ssdeep: 48:6CGaK9B9WwELSQpMLUgm4NMEkEi+sx2uiSCtiOlA/RYqFypfbNtmc:9SWBSAML+EjLBuqe/RAzNtz
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T1ADC1B52053DC8737EEBB4B719CA3530126BCF7659C67AB9C28C9526F6E127004D23AA1
sha3_384: 6b94e61b204b30ce574a167c5288e0f818dd5bbdf1fa9a009e164c139b32e912f2242154e0aed325d70f0836e4cdb682
ep_bytes: ff250020400000000000000000000000
timestamp: 2094-03-18 14:46:58

Version Info:
Translation: 0x0000 0x04b0
Comments: 
CompanyName: 
FileDescription: 
FileVersion: 1.0.0.0
InternalName: Slimstart.exe
LegalCopyright: Copyright ©  2020
LegalTrademarks: 
OriginalFilename: Slimstart.exe
ProductName: 
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

Malware.AI.2563956906 also known as:

Lionic	Trojan.Win32.Generic.4!c
MicroWorld-eScan	Trojan.GenericKD.47585098
FireEye	Trojan.GenericKD.47585098
ALYac	Trojan.GenericKD.47585098
Cylance	Unsafe
VIPRE	Trojan.Win32.Generic!BT
K7AntiVirus	Riskware ( 0057fdc61 )
Alibaba	RiskWare:MSIL/Generic.4e7e6996
K7GW	Riskware ( 0057fdc61 )
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of MSIL/Riskware.KnownBe4.G
TrendMicro-HouseCall	TROJ_GEN.R002H06L721
BitDefender	Trojan.GenericKD.47585098
Avast	Win32:Malware-gen
Ad-Aware	Trojan.GenericKD.47585098
Sophos	Mal/Generic-S
McAfee-GW-Edition	GenericRXQV-EP!54C1EB972690
Emsisoft	Trojan.GenericKD.47585098 (B)
SentinelOne	Static AI – Suspicious PE
GData	Trojan.GenericKD.47585098
MAX	malware (ai score=87)
Gridinsoft	Ransom.Win32.Sabsik.sa
Arcabit	Trojan.Generic.D2D6174A
Microsoft	Trojan:Win32/Sabsik.FL.B!ml
AhnLab-V3	Trojan/Win.Generic.C4587743
McAfee	GenericRXQV-EP!54C1EB972690
VBA32	TScope.Trojan.MSIL
Malwarebytes	Malware.AI.2563956906
APEX	Malicious
Yandex	Riskware.KnownBe4!XquL5cqoEhw
MaxSecure	Trojan.Malware.74733560.susgen
Fortinet	Riskware/KnownBe4
AVG	Win32:Malware-gen
Cybereason	malicious.a8b7cd

How to remove Malware.AI.2563956906?

Malware.AI.2563956906 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X