Malware.AI.2592941768 removal

The Malware.AI.2592941768 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.2592941768 virus can do?

The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid
CAPE detected the shellcode get eip malware family
Yara detections observed in process dumps, payloads or dropped files

How to determine Malware.AI.2592941768?


File Info:
name: 1ABA498DECA62D813820.mlw
path: /opt/CAPEv2/storage/binaries/40a8eb79be2a3b4bf15f0497d50c1d650d07ce98b0aa55ccdaa2ac35e7aff4ff
crc32: F3EC093D
md5: 1aba498deca62d8138208582558b7132
sha1: 838f268bdfeff6d70fdfc04a698ba59176de0648
sha256: 40a8eb79be2a3b4bf15f0497d50c1d650d07ce98b0aa55ccdaa2ac35e7aff4ff
sha512: 754b9f3978aa4eab6231520acaa4790693634ce80ecbd1555c0afeb69c1d5ee97041e859165255263b3da169a4babff3199d03e7350478a94e21788d55f3e4c9
ssdeep: 49152:T3F8aIZ08espUclLm5jub8Epvv4Mzt093NPj54Oj62OV4exOdkbQ:TF86Xs7lLKE3x
type: PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
tlsh: T1C0162920FB406019F9D702B769FD219D84687DB04BD940D3A2895AEE977E7E16F32383
sha3_384: 9063cfa2591d5d03f90f4ca0f376af842da992d0314eeddcea88e024dd1afada8b92572d3b6cc8971d2cca9fa7227780
ep_bytes: e9b2dd2400e93d771400e908510700e9
timestamp: 2022-01-29 05:03:18

Version Info:
0: [No Data]

Malware.AI.2592941768 also known as:

Bkav	W32.AIDetectMalware
Lionic	Trojan.Win32.Generic.4!c
Elastic	malicious (high confidence)
Cynet	Malicious (score: 100)
FireEye	Generic.mg.1aba498deca62d81
Skyhigh	BehavesLike.Win32.Dropper.rm
ALYac	Gen:Variant.Johnnie.344310
Cylance	unsafe
VIPRE	Gen:Variant.Johnnie.344310
Sangfor	Trojan.Win32.Agent.Vl9b
BitDefenderTheta	Gen:NN.ZedlaF.36802.@Z4@a0fpRMgi
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win32/GameHack.FRO potentially unsafe
BitDefender	Gen:Variant.Johnnie.344310
MicroWorld-eScan	Gen:Variant.Johnnie.344310
Avast	Win32:MalwareX-gen [Trj]
Sophos	Generic Reputation PUA (PUA)
Trapmine	suspicious.low.ml.score
Emsisoft	Gen:Variant.Johnnie.344310 (B)
Google	Detected
Antiy-AVL	Trojan/Win32.Agent
Arcabit	Trojan.Johnnie.D540F6
GData	Gen:Variant.Johnnie.344310
Varist	W32/ABRisk.WKFH-1058
McAfee	GenericRXAA-AA!1ABA498DECA6
MAX	malware (ai score=80)
Malwarebytes	Malware.AI.2592941768
Panda	Trj/Chgt.AD
TrendMicro-HouseCall	TROJ_GEN.R002H09AI24
Rising	Trojan.Generic@AI.93 (RDML:bapQEwx+hTdPdgyJtqbikw)
SentinelOne	Static AI – Suspicious PE
Fortinet	Riskware/GameHack
AVG	Win32:MalwareX-gen [Trj]
DeepInstinct	MALICIOUS

How to remove Malware.AI.2592941768?

Malware.AI.2592941768 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X