Malware

Malware.AI.2575722004 information

Malware Removal

The Malware.AI.2575722004 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.2575722004 virus can do?

  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • Creates RWX memory
  • Possible date expiration check, exits too soon after checking local time
  • Guard pages use detected – possible anti-debugging.
  • Dynamic (imported) function loading detected
  • CAPE extracted potentially suspicious content
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid

How to determine Malware.AI.2575722004?



File Info:

name: 02EF03BD5E6DBF9C03E8.mlw
path: /opt/CAPEv2/storage/binaries/802b4c404fa57630f876b89118cac32f2b5a24b42db28390e53f8db743db0969
crc32: D23A2710
md5: 02ef03bd5e6dbf9c03e8504c9e797abd
sha1: 7df94bae58285cb3b557b0265098df7ca757e265
sha256: 802b4c404fa57630f876b89118cac32f2b5a24b42db28390e53f8db743db0969
sha512: 5f9691e07de1de48e59d0636188a96c9927f00e7df0d2f99727c9b5befd83854632a38ba8a7959aa34c01b9bd6fe914e1c8b61046fb526bddd368ab3002ad9f1
ssdeep: 12288:yoiuezeU0HFeOR3hbK+ZRPJahWryTmjCrbq7H092H:c0bcYryqjCvq7U9q
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T130B4E08EB7E4DE96C28E7636509306046B36C8277D02AB5725D1183F1C873EBFD8985B
sha3_384: 7799c6763b3887f0e135acc8650d2dee0a6caad2ec9a1f44b2c9a040aa99bfcbb4c977218f21eb1bb819d1c02a278270
ep_bytes: ff250020400000000000000000000000
timestamp: 2015-12-14 11:56:56


Version Info:

Translation: 0x0000 0x04b0
Comments: Music Logs
CompanyName: Music Inc.
FileDescription: Music Logs
FileVersion: 1.0.0.606
InternalName: MusicLogs.exe
LegalCopyright: Copyright ©  2015
LegalTrademarks: Music Logs
OriginalFilename: MusicLogs.exe
ProductName: Music Logs
ProductVersion: 1.0.0.606
Assembly Version: 1.0.0.0

Malware.AI.2575722004 also known as:

BkavW32.AIDetectNet.01
LionicTrojan.Win32.VBKrypt.lnij
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Strictor.265199
FireEyeGen:Variant.Strictor.265199
McAfeeArtemis!02EF03BD5E6D
CylanceUnsafe
VIPREGen:Variant.Strictor.265199
SangforSuspicious.Win32.Save.a
K7AntiVirusRiskware ( 0040eff71 )
AlibabaTrojan:Win32/Downeks.4dc06035
K7GWRiskware ( 0040eff71 )
CrowdStrikewin/malicious_confidence_100% (W)
VirITTrojan.Win32.Pakes2_c.BYOZ
SymantecTrojan.Dustky
ESET-NOD32a variant of MSIL/Agent.AIB
APEXMalicious
Paloaltogeneric.ml
ClamAVWin.Trojan.DustySky-12
KasperskyTrojan.Win32.Downeks.ab
BitDefenderGen:Variant.Strictor.265199
NANO-AntivirusTrojan.Win32.Drop.eaftdr
AvastWin32:Malware-gen
TencentWin32.Trojan.Fakedoc.Auto
Ad-AwareGen:Variant.Strictor.265199
SophosML/PE-A + Mal/MSIL-PV
ComodoMalware@#1vmesmial0j89
DrWebTrojan.MulDrop6.23813
ZillyaTrojan.Agent.Win32.2327118
McAfee-GW-EditionArtemis!Trojan
EmsisoftGen:Variant.Strictor.265199 (B)
SentinelOneStatic AI – Malicious PE
GDataGen:Variant.Strictor.265199
JiangminTrojan.MSIL.amms
AviraTR/Tpyn.495104
Antiy-AVLTrojan/Generic.ASMalwS.47BB
KingsoftWin32.Heur.KVM007.a.(kcloud)
ZoneAlarmTrojan.Win32.Downeks.ab
MicrosoftBackdoor:Win32/Bladabindi!ml
CynetMalicious (score: 99)
VBA32Trojan.MSIL.gen.15
ALYacGen:Variant.Strictor.265199
MAXmalware (ai score=100)
MalwarebytesMalware.AI.2575722004
RisingTrojan.Agent!8.B1E (CLOUD)
YandexTrojan.Tpyn!wqgdX3oTFi8
IkarusTrojan.SuspectCRC
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/Tpyn.PV!tr
BitDefenderThetaGen:NN.ZemsilF.34806.Em0@aO0IxAh
AVGWin32:Malware-gen
Cybereasonmalicious.d5e6db
PandaTrj/GdSda.A

How to remove Malware.AI.2575722004?

Malware.AI.2575722004 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment