What is “Malware.AI.2757872387”?

The Malware.AI.2757872387 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.2757872387 virus can do?

Dynamic (imported) function loading detected
The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid

How to determine Malware.AI.2757872387?


File Info:
name: D7ADA6E71341F723F712.mlw
path: /opt/CAPEv2/storage/binaries/5905d9e6f65afe1fe55e67373cdebc954d331fbf3121b5cc0b348ff96bfb0eaf
crc32: F9B88B38
md5: d7ada6e71341f723f712201fff354053
sha1: 0618492ffa4f214750493f3dddaf5310b21ee553
sha256: 5905d9e6f65afe1fe55e67373cdebc954d331fbf3121b5cc0b348ff96bfb0eaf
sha512: 9f3494030edae68f62a155e80c3676e00f4e712e9fe5f7734e41664eedd296973912fd547a82b70c51cd7982194ec4e8d35ab53e85eaaa6cfb5670a5a6047181
ssdeep: 49152:HCttXKwyH13YpqFdL+uGiHJqRxrEr2DTfrwgn+vtBS/ca4olWwaQ/raTwzwV/eCQ:HSKlV3YpqFdquGiHexrEivfJnWMcIww9
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T120D533213AF5C07ED1922630DCDC97F626E3EB244F14498B23859B5E2F32995C639B1E
sha3_384: b285b3a3916bebe7c839ae854f46d40ee2fa449d6b6b19897e4735f69b9770e3c757ddfb86334528bd51731a2c38e260
ep_bytes: 558bec6aff68a0cc420068c077420064
timestamp: 2019-02-21 16:00:00

Version Info:
CompanyName: Igor Pavlov
FileDescription: 7z SFX
FileVersion: 19.00
InternalName: 7z.sfx
LegalCopyright: Copyright (c) 1999-2018 Igor Pavlov
OriginalFilename: 7z.sfx.exe
ProductName: 7-Zip
ProductVersion: 19.00
Translation: 0x0409 0x04b0

Malware.AI.2757872387 also known as:

Lionic	Trojan.Win32.Zusy.4!c
MicroWorld-eScan	Gen:Variant.Zusy.400823
FireEye	Gen:Variant.Zusy.400823
ALYac	Gen:Variant.Zusy.400823
Sangfor	Trojan.Win32.Zusy.400823
Alibaba	Trojan:Win32/XPACK.e379c2fa
Cybereason	malicious.71341f
Symantec	Trojan.Gen.2
APEX	Malicious
ClamAV	Win.Malware.00004745a-9934733-0
BitDefender	Gen:Variant.Zusy.400823
NANO-Antivirus	Virus.Win32.Gen-Crypt.ccnc
Avast	Win32:TrojanX-gen [Trj]
Emsisoft	Gen:Variant.Zusy.400823 (B)
McAfee-GW-Edition	BehavesLike.Win32.BadFile.vc
Sophos	Generic ML PUA (PUA)
SentinelOne	Static AI – Malicious SFX
MAX	malware (ai score=84)
Microsoft	Trojan:Win32/Wacatac.B!ml
Arcabit	Trojan.Zusy.D61DB7
GData	Gen:Variant.Zusy.400823 (2x)
McAfee	Artemis!D7ADA6E71341
VBA32	BScope.Backdoor.RShot
Malwarebytes	Malware.AI.2757872387
Rising	Trojan.Generic@AI.91 (RDML:N821dJ9cokFxwLwUwW/BvQ)
Ikarus	Gen.Zygug
Fortinet	W32/PossibleThreat
BitDefenderTheta	Gen:NN.ZedlaF.34712.N68@aeRQ1Fei
AVG	Win32:TrojanX-gen [Trj]

How to remove Malware.AI.2757872387?

Malware.AI.2757872387 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X