About “Malware.AI.2588645747” infection

The Malware.AI.2588645747 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.2588645747 virus can do?

SetUnhandledExceptionFilter detected (possible anti-debug)
Dynamic (imported) function loading detected
The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid

How to determine Malware.AI.2588645747?


File Info:
name: B3EFDF12DA17962795B8.mlw
path: /opt/CAPEv2/storage/binaries/3993f02084a274acd3fed418f67482bb20fa5c869a933c5b3e045721b8f24098
crc32: AA419D9F
md5: b3efdf12da17962795b8e82239e2e8c0
sha1: cdc3d37b418a7acc8167eeba61844e9b9ab97777
sha256: 3993f02084a274acd3fed418f67482bb20fa5c869a933c5b3e045721b8f24098
sha512: 1c7f29cf8ca77f3215e519d2c450354d5579c66d250150868924671dcec58de886055d9ce99e574d78c267e541e08481754dba684be0e424277f039e8b5a8ae6
ssdeep: 6144:WcJiMLLIOOshB6/BHCvyOG/60jmL9/ohO0f7bqxu:BJZL8lsb0TOGlmp/oE0s
type: PE32+ executable (GUI) x86-64, for MS Windows
tlsh: T105748D5AF6A408F9D477D13CC8525906E772BC5A07218BEF2394075B2F236E09E3EB61
sha3_384: 68fe8eb341b70ed069e7cd4234daa7465b7966e5d2768cad6d054195cb4722b2bf37444ce6f8c17dd533a3b58e623c25
ep_bytes: 4883ec28e8730500004883c428e97afe
timestamp: 2021-11-27 10:58:24

Version Info:
0: [No Data]

Malware.AI.2588645747 also known as:

Lionic	Trojan.Win32.Disco.i!c
MicroWorld-eScan	Gen:Variant.Midie.105165
McAfee	Artemis!B3EFDF12DA17
Cylance	Unsafe
Zillya	Trojan.Disco.Win32.4230
K7AntiVirus	Password-Stealer ( 0058b20e1 )
Alibaba	TrojanPSW:Win32/Disco.e8ba71a1
K7GW	Password-Stealer ( 0058b20e1 )
Cyren	W64/Agent.DUX.gen!Eldorado
Symantec	Trojan.Gen.MBT
ESET-NOD32	a variant of Win64/PSW.Agent.BI
APEX	Malicious
Kaspersky	Trojan-PSW.Win32.Disco.hrw
BitDefender	Gen:Variant.Midie.105165
Avast	Win64:Malware-gen
Ad-Aware	Gen:Variant.Midie.105165
Sophos	Mal/Generic-S
TrendMicro	TROJ_GEN.R053C0WL321
McAfee-GW-Edition	BehavesLike.Win64.Generic.fh
FireEye	Gen:Variant.Midie.105165
Emsisoft	Gen:Variant.Midie.105165 (B)
GData	Gen:Variant.Midie.105165
Arcabit	Trojan.Midie.D19ACD
Microsoft	Trojan:Win32/Sabsik.TE.B!ml
AhnLab-V3	Trojan/Win.PWS.C4805020
VBA32	TrojanPSW.Disco
ALYac	Gen:Variant.Midie.105165
MAX	malware (ai score=83)
Malwarebytes	Malware.AI.2588645747
TrendMicro-HouseCall	TROJ_GEN.R053C0WL321
Ikarus	Trojan-PSW.Agent
Fortinet	W64/Agent.BI!tr.pws
AVG	Win64:Malware-gen
Panda	Trj/CI.A

How to remove Malware.AI.2588645747?

Malware.AI.2588645747 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X