Malware

What is “Malware.AI.2690263401”?

Malware Removal

The Malware.AI.2690263401 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.2690263401 virus can do?

  • Executable code extraction
  • Injection with CreateRemoteThread in a remote process
  • Creates RWX memory
  • A process attempted to delay the analysis task.
  • Starts servers listening on 0.0.0.0:21
  • Expresses interest in specific running processes
  • Repeatedly searches for a not-found process, may want to run with startbrowser=1 option
  • Drops a binary and executes it
  • Uses Windows utilities for basic functionality
  • Deletes its original binary from disk
  • Tries to suspend Cuckoo threads to prevent logging of malicious activity
  • Code injection with CreateRemoteThread in a remote process
  • Tries to unhook or modify Windows functions monitored by Cuckoo
  • Attempts to repeatedly call a single API many times in order to delay analysis time
  • Installs itself for autorun at Windows startup
  • Creates a hidden or system file
  • Likely virus infection of existing system binary
  • Creates a copy of itself
  • Anomalous binary characteristics

How to determine Malware.AI.2690263401?



File Info:

crc32: E1768D12
md5: 498a5b89f05956c54ac0ec2a341d7165
name: 498A5B89F05956C54AC0EC2A341D7165.mlw
sha1: d75715ff6d07ef01307e23ae15cc081fa8576d4e
sha256: 0ef8d047bf5a3e8c0cd174a261d5ef5015afd5559c5d870ade5706e6d8e87fa1
sha512: 9551761343043de4d756d6c50e3bf1be7d987b83fa1afed0c35763e3afebf4ad3bae029bdfab71efba2f491f89ea7b62f484080f5a99179cfe3562332e2d200d
ssdeep: 6144:33sh9XcYercRb4lY0cVrX3YBCBmr7h97ofODwJT2C:33k8rc1jmdo8wZ
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

0: [No Data]

Malware.AI.2690263401 also known as:

BkavW32.AIDetect.malware1
K7AntiVirusTrojan ( 004d35321 )
Elasticmalicious (high confidence)
DrWebTrojan.MulDrop11.21795
ClamAVWin.Dropper.Ramnit-8176536-0
CAT-QuickHealBackdoor.Zegost.19720
McAfeeGenericRXDU-JC!498A5B89F059
MalwarebytesMalware.AI.2690263401
ZillyaTrojan.Injector.Win32.747596
CrowdStrikewin/malicious_confidence_90% (D)
AlibabaBackdoor:Win32/Farfli.87e0c402
K7GWTrojan ( 004d35321 )
Cybereasonmalicious.9f0595
BaiduWin32.Trojan.Kryptik.te
CyrenW32/Injector.TAKX-9191
SymantecBackdoor.Zegost
ESET-NOD32a variant of Win32/Injector.CJVZ
APEXMalicious
AvastWin32:Trojan-gen
CynetMalicious (score: 100)
KasperskyBackdoor.Win32.Farfli.bnbl
BitDefenderDeepScan:Generic.Malware.LPfoPk!23.8B0F9D65
NANO-AntivirusTrojan.Win32.Farfli.gdldux
MicroWorld-eScanDeepScan:Generic.Malware.LPfoPk!23.8B0F9D65
TencentMalware.Win32.Gencirc.10b62b91
Ad-AwareDeepScan:Generic.Malware.LPfoPk!23.8B0F9D65
SophosML/PE-A + Troj/AutoG-IE
ComodoTrojWare.Win32.Kryptik.BODF@54cb1p
BitDefenderThetaAI:Packer.FBEEA34E1E
VIPRETrojan.Win32.Generic!BT
McAfee-GW-EditionBehavesLike.Win32.Downloader.fh
FireEyeGeneric.mg.498a5b89f05956c5
EmsisoftDeepScan:Generic.Malware.LPfoPk!23.8B0F9D65 (B)
SentinelOneStatic AI – Malicious PE
JiangminTrojan.Generic.wfzk
AviraTR/Dropper.Gen
eGambitUnsafe.AI_Score_100%
GridinsoftTrojan.Win32.Downloader.oa!s1
ArcabitDeepScan:Generic.Malware.LPfoPk!23.8B0F9D65
ZoneAlarmBackdoor.Win32.Farfli.bnbl
GDataDeepScan:Generic.Malware.LPfoPk!23.8B0F9D65
AhnLab-V3Trojan/Win32.Farfli.R341993
Acronissuspicious
VBA32Trojan.Hottrend
MAXmalware (ai score=82)
TrendMicro-HouseCallTROJ_GEN.R066C0DDD21
RisingBackdoor.Farfli!8.B4 (TFE:dGZlOgUIrbtAvJGNog)
YandexTrojan.GenAsa!KOXGefXMHQI
IkarusTrojan.Win32.Injector
MaxSecureTrojan.Malware.74662063.susgen
FortinetW32/Kryptik.FDQG!tr
AVGWin32:Trojan-gen
Paloaltogeneric.ml
Qihoo-360HEUR/QVM07.1.91CF.Malware.Gen

How to remove Malware.AI.2690263401?

Malware.AI.2690263401 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment