Malware

Malware.AI.268793372 malicious file

Malware Removal

The Malware.AI.268793372 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.268793372 virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Sample contains Overlay data
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • CAPE extracted potentially suspicious content
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX
  • Authenticode signature is invalid
  • Creates a copy of itself
  • Deletes executed files from disk

How to determine Malware.AI.268793372?



File Info:

name: 5DF26091F24A9F903BF0.mlw
path: /opt/CAPEv2/storage/binaries/21a8bcdd2763e08bc4a325b18d14433c4890f7e60162d36c45fcc35fff7100b9
crc32: 5ED836DE
md5: 5df26091f24a9f903bf0e390c8632a47
sha1: a812311a97ad1bbfd9fd53a01e171a8a6db587f1
sha256: 21a8bcdd2763e08bc4a325b18d14433c4890f7e60162d36c45fcc35fff7100b9
sha512: e56a25db8298c797153c4053b036490eaf67d32dff0a430e1cd8eb4bc1065171dbf992f3da618a1a8f8c8af5dfa84ebd647a1b933ad09d438decc1d9c08795ef
ssdeep: 1536:YmjE9ZSDAEE3kKuebrOLCSexmEREVsXPl87HQ0CmuJdr:YmKCnitx92q/l87wBbdr
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T1D463020A5D199DB0D8874B7F62CFDC56BF7A28A16E2ACA07A077DC002A95F340477E03
sha3_384: 0590773d9c542cfd135d7e6c99a6eef5dbb94b404a73a78ebf87ca73118cb971f6cbf2bff2e38dfe0d6d0f601c918c9f
ep_bytes: bf000000005309d14101c98b042483c4
timestamp: 1970-01-01 00:00:00


Version Info:

0: [No Data]

Malware.AI.268793372 also known as:

BkavW32.AIDetect.malware2
LionicTrojan.Win32.Copak.4!c
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Graftor.954131
ClamAVWin.Packed.Copak-9853643-0
FireEyeGeneric.mg.5df26091f24a9f90
McAfeeGenericRXNY-OP!5DF26091F24A
CylanceUnsafe
ZillyaTrojan.Kryptik.Win32.3259781
SangforSuspicious.Win32.Save.a
K7AntiVirusTrojan ( 0058c5ff1 )
AlibabaTrojan:Win32/Copak.96fe2821
K7GWTrojan ( 0058c5ff1 )
Cybereasonmalicious.a97ad1
BitDefenderThetaGen:NN.ZexaF.34698.emY@aqxLbnk
CyrenW32/Kryptik.DCC.gen!Eldorado
SymantecML.Attribute.HighConfidence
tehtrisGeneric.Malware
ESET-NOD32a variant of Win32/Kryptik.HITO
APEXMalicious
Paloaltogeneric.ml
CynetMalicious (score: 100)
KasperskyHEUR:Trojan.Win32.Copak.vho
BitDefenderGen:Variant.Graftor.954131
NANO-AntivirusTrojan.Win32.Agent.ixszcw
AvastWin32:Evo-gen [Trj]
TencentTrojan.Win32.Copak.hb
Ad-AwareGen:Variant.Graftor.954131
EmsisoftGen:Variant.Graftor.954131 (B)
ComodoPacked.Win32.MUPX.Gen@24tbus
DrWebTrojan.Packed2.43250
VIPREGen:Variant.Graftor.954131
McAfee-GW-EditionBehavesLike.Win32.VirRansom.kc
SophosMal/Generic-R + Troj/Agent-BGZJ
SentinelOneStatic AI – Malicious PE
GDataGen:Variant.Graftor.954131
JiangminTrojan.Copak.cls
AviraHEUR/AGEN.1200606
Antiy-AVLTrojan/Generic.ASBOL.C686
ArcabitTrojan.Graftor.DE8F13
MicrosoftTrojan:Win32/Wacatac.B!ml
GoogleDetected
AhnLab-V3Malware/Gen.RL_Reputation.R367309
Acronissuspicious
VBA32BScope.Trojan.Wacatac
ALYacGen:Variant.Graftor.954131
MAXmalware (ai score=88)
MalwarebytesMalware.AI.268793372
RisingTrojan.Kryptik!1.D12D (CLASSIC)
YandexTrojan.Copak!bCI2R8mwWaA
IkarusTrojan.Kryptik
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/Kryptik.HITO!tr
AVGWin32:Evo-gen [Trj]
PandaTrj/Genetic.gen
CrowdStrikewin/malicious_confidence_100% (W)

How to remove Malware.AI.268793372?

Malware.AI.268793372 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment