About “Malware.AI.2785222313” infection

The Malware.AI.2785222313 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.2785222313 virus can do?

The binary likely contains encrypted or compressed data.

How to determine Malware.AI.2785222313?


File Info:
crc32: 94F5DE82
md5: c6d67643e8c6752b608338e68ee2c215
name: C6D67643E8C6752B608338E68EE2C215.mlw
sha1: 1d8f017e9d3bf2552b0af78708a68977c28eed80
sha256: 465a874801c2e469b3d4b99133cb3c4ed45e88faf94ad0f1359d7a2373812bac
sha512: f7cb86a4db1b4868935458803e2ba42d475738d1ade99722654446a45bd48675b6c0c1b62a8b2f9578a289e27b614f250d995fe1dde90c61d44b07fd5fcde909
ssdeep: 6144:B8OvZU3DmS4mu294EioNT9kdnLgYsQrMnrdSOfVssiVWLQpnuRA5wxbZ:zZcmSzujoo9sQrMnMOfSyQh2Z
type: PE32+ executable (GUI) x86-64, for MS Windows

Version Info:
LegalCopyright: xa9 Microsoft Corporation. All rights reserved.
InternalName: DiagnosticsHub.StandardCollector.Service.exe
FileVersion: 11.00.17134.765 (WinBuild.160101.0800)
CompanyName: Microsoft Corporation
ProductName: Internet Explorer
ProductVersion: 11.00.17134.765
FileDescription: Microsoft (R) Diagnostics Hub Standard Collector
OriginalFilename: DiagnosticsHub.StandardCollector.Service.exe
Translation: 0x0409 0x04b0

Malware.AI.2785222313 also known as:

K7AntiVirus	Virus ( 00535e4a1 )
Elastic	malicious (high confidence)
DrWeb	Win64.Expiro.132
Cynet	Malicious (score: 100)
ALYac	Win64.Expiro.Gen.6
Cylance	Unsafe
CrowdStrike	win/malicious_confidence_80% (D)
K7GW	Virus ( 00535e4a1 )
Cybereason	malicious.e9d3bf
Cyren	W64/Expiro.AH.gen!Eldorado
ESET-NOD32	a variant of Win64/Expiro.CO
APEX	Malicious
Avast	Win64:Xpirat [Inf]
ClamAV	Win.Virus.Expiro-9891421-0
Kaspersky	HEUR:Virus.Win64.Expiro.gen
BitDefender	Win64.Expiro.Gen.6
NANO-Antivirus	Virus.Win64.Expiro.clnvwd
MicroWorld-eScan	Win64.Expiro.Gen.6
Ad-Aware	Win64.Expiro.Gen.6
Sophos	ML/PE-A + W64/Expiro-AX
TrendMicro	Virus.Win64.EXPIRO.MR
FireEye	Generic.mg.c6d67643e8c6752b
Emsisoft	Win64.Expiro.Gen.6 (B)
SentinelOne	Static AI – Malicious PE
Jiangmin	Trojan.Bingoml.akq
Avira	TR/Patched.Gen
Antiy-AVL	Trojan/Generic.ASVirus.30B
Microsoft	Trojan:Win32/Sabsik.FL.B!ml
Arcabit	Win64.Expiro.Gen.6
GData	Win64.Expiro.Gen.6
Acronis	suspicious
MAX	malware (ai score=86)
Malwarebytes	Malware.AI.2785222313
TrendMicro-HouseCall	Virus.Win64.EXPIRO.MR
Ikarus	Virus.Win64.Expiro
MaxSecure	virus.win64.expiro.gen
Fortinet	W64/Expiro.BS
AVG	Win64:Xpirat [Inf]

How to remove Malware.AI.2785222313?

Malware.AI.2785222313 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X