Malware

How to remove “Malware.AI.2661297303”?

Malware Removal

The Malware.AI.2661297303 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.2661297303 virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Sample contains Overlay data
  • Presents an Authenticode digital signature
  • Reads data out of its own binary image
  • CAPE extracted potentially suspicious content
  • Authenticode signature is invalid
  • CAPE detected the RDPWrap malware family
  • Anomalous binary characteristics
  • Yara detections observed in process dumps, payloads or dropped files

How to determine Malware.AI.2661297303?



File Info:

name: FB2F13BDF700ED28B6EC.mlw
path: /opt/CAPEv2/storage/binaries/1a2611d1579a47129483745f1867cee41c87d9394aec2d2c7120717c1e932d8a
crc32: FED3912B
md5: fb2f13bdf700ed28b6ecd8436ce9bbec
sha1: 6d9f98ee24b4cc3dafe2550c2d0a416965e5d073
sha256: 1a2611d1579a47129483745f1867cee41c87d9394aec2d2c7120717c1e932d8a
sha512: 2b44cb8a0cf843ec6f7599494f591526bce406afbd5a88fbf4f2d5daafde24b2a922fa455a5d901339249583b8dc32ef9aa7e5be81b31146e64d79fd66878d12
ssdeep: 49152:ENTZ0VDVRkP3pddiOcjTvfUwvOnI1ttMOjD647nfxX5Vgx6:ENTZ0VDVRkP7dTuGWtyOjD6e7ig
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1AD069D80A7A9DEB1E8011870139FAADC4F656E5867E2B0F3E5C53F89CE328F18575187
sha3_384: b0bc8ef255093abbfdf24404448cf7a7eb24bc3d46eaabc7b4d4a24648ad6ddd4370bb7afdb36d729797b4fd1da66c27
ep_bytes: 5589e583ed18c745ec402c510052ba30
timestamp: 2015-10-09 16:45:59


Version Info:

CompanyName: Google Inc.
FileDescription: Picasa
FileVersion: 3.9.141.255
InternalName: Picasa
LegalCopyright: © 2003-2013 Google Inc.
OriginalFilename: Picasa.exe
ProductName: Picasa
ProductVersion: 3.9.141
Translation: 0x0409 0x04b0

Malware.AI.2661297303 also known as:

BkavW32.Common.98D5A50C
LionicTrojan.Win32.Agentb.X!c
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Ser.Mikey.2394
FireEyeGen:Variant.Ser.Mikey.2394
McAfeeGenericRXAA-AA!FB2F13BDF700
MalwarebytesMalware.AI.2661297303
VIPREGen:Variant.Ser.Mikey.2394
SangforTrojan.Win32.Agent.Vffb
BitDefenderGen:Variant.Ser.Mikey.2394
Cybereasonmalicious.df700e
VirITTrojan.Win32.Genus.NEW
SymantecTrojan Horse
ESET-NOD32a variant of Generik.EXAWBYU
TrendMicro-HouseCallTrojanSpy.Win32.COPPERSTEALR.A
KasperskyTrojan.Win32.Agentb.kujg
NANO-AntivirusVirus.Win32.Gen-Crypt.ccnc
AvastWin32:Trojan-gen
RisingTrojan.Generic@AI.97 (RDML:tKKQodzIgG2dgVwJpFu78A)
EmsisoftGen:Variant.Ser.Mikey.2394 (B)
F-SecureTrojan.TR/Redcap.mgffg
DrWebTrojan.DownLoader44.49559
ZillyaTrojan.Agent.Win32.2815297
TrendMicroTrojanSpy.Win32.COPPERSTEALR.A
SophosMal/Generic-S (PUA)
GDataGen:Variant.Ser.Mikey.2394
JiangminTrojan.Agentb.mrw
WebrootW32.Trojan.Gen
GoogleDetected
AviraTR/Redcap.mgffg
VaristW32/ABTrojan.RQCB-3511
ArcabitTrojan.Ser.Mikey.D95A
ViRobotTrojan.Win.Z.Ser.3904840.B
ZoneAlarmTrojan.Win32.Agentb.kujg
MicrosoftTrojan:Win32/Casdet!rfn
CynetMalicious (score: 99)
AhnLab-V3Trojan/Win.COPPERSTEALR.R596078
ALYacSpyware.Infostealer.Copper
MAXmalware (ai score=82)
Cylanceunsafe
TencentMalware.Win32.Gencirc.10bda413
YandexTrojan.Agentb!KG/cbzQXHZY
IkarusTrojan-Spy.Copperstealer
FortinetW32/Malicious_Behavior.VEX
AVGWin32:Trojan-gen
DeepInstinctMALICIOUS
CrowdStrikewin/malicious_confidence_100% (W)
alibabacloudVirTool:Win/SignThief.A(dyn)

How to remove Malware.AI.2661297303?

Malware.AI.2661297303 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment