Should I remove “Malware.AI.2687379599”?

The Malware.AI.2687379599 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.2687379599 virus can do?

The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid

How to determine Malware.AI.2687379599?


File Info:
name: D23EA14232BC19D404FA.mlw
path: /opt/CAPEv2/storage/binaries/1389a2dceea0f159780dc43aba8c34c2ec0c3855ce53c7492498893f976147f8
crc32: BE4898E7
md5: d23ea14232bc19d404fa9bfb22341e17
sha1: 08b6933dd80aca9d7e8388b173ed2431f973b831
sha256: 1389a2dceea0f159780dc43aba8c34c2ec0c3855ce53c7492498893f976147f8
sha512: bcd6d8b32528e76a7e4419bf9cdee37fb57e133e94105c67a13a3b7b92f96ef5798efb749d80b97788b26194485f33f3106061279970e7901699a67280023eb5
ssdeep: 24576:t48PLJJ/3H163adUO3+s7fWjhumhDOsOwpEcN/drR:ZLJ1H1Q0mOszRR
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T14B2528423A08DE01D269163BC9EF42144BECEE517A23DB1A7E9F33AD65523A71C0D1DE
sha3_384: 135475abc1ca21046a4bf7184e33a38174e05378cc1563f08c50ec4a134ab687530a4bdb844deebc917e0a4e97140397
ep_bytes: 
timestamp: 2022-01-07 23:38:44

Version Info:
0: [No Data]

Malware.AI.2687379599 also known as:

Lionic	Trojan.Win32.EyePyramid.4!c
DrWeb	BackDoor.QuasarNET.5
MicroWorld-eScan	Gen:Variant.EyePyramid.15
ALYac	Gen:Variant.EyePyramid.15
Sangfor	Suspicious.Win32.Save.a
Cybereason	malicious.232bc1
Cyren	W32/MSIL_Agent.LQ.gen!Eldorado
Symantec	Trojan.Gen.MBT
ESET-NOD32	a variant of MSIL/Spy.Agent.DEK
TrendMicro-HouseCall	TROJ_GEN.R002H09B722
ClamAV	Win.Malware.Uztuby-9848412-0
BitDefender	Gen:Variant.EyePyramid.15
Tencent	Win32.Trojan.Eyepyramid.Wofu
Ad-Aware	Gen:Variant.EyePyramid.15
Sophos	Mal/Generic-S
Comodo	Heur.Corrupt.PE@1z141z3
McAfee-GW-Edition	BehavesLike.Win32.Generic.th
FireEye	Gen:Variant.EyePyramid.15
Emsisoft	Gen:Variant.EyePyramid.15 (B)
SentinelOne	Static AI – Malicious PE
GData	Gen:Variant.EyePyramid.15
MAX	malware (ai score=85)
Gridinsoft	Ransom.Win32.Sabsik.sa
Arcabit	Trojan.EyePyramid.15
Microsoft	Trojan:Win32/Sabsik.TE.B!ml
Cynet	Malicious (score: 100)
Malwarebytes	Malware.AI.2687379599
APEX	Malicious
Ikarus	Trojan-Spy.MSIL.Agent
Fortinet	MSIL/Agent.DEK!tr.spy
CrowdStrike	win/malicious_confidence_70% (W)
MaxSecure	Trojan.Malware.10633600.susgen

How to remove Malware.AI.2687379599?

Malware.AI.2687379599 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X