Malware

Malware.AI.2795111810 removal

Malware Removal

The Malware.AI.2795111810 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.2795111810 virus can do?

  • CAPE extracted potentially suspicious content
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • Binary compilation timestomping detected

How to determine Malware.AI.2795111810?



File Info:

name: 792EEDD62D6B795D567A.mlw
path: /opt/CAPEv2/storage/binaries/c4cf43890710f5228421695eb3087f815212d9cdd1a577634e6e9d4b853e1135
crc32: 27876BAE
md5: 792eedd62d6b795d567add3522fe7dc0
sha1: d500b1ae074ba577ae1b065e7bbb61e2774ef044
sha256: c4cf43890710f5228421695eb3087f815212d9cdd1a577634e6e9d4b853e1135
sha512: 0942749a819d063c2785d5533dcaa8fec2c8acf0526a00be6ee2c923f1651cae8a2caa9c2e0e4df6631ba774e398e9ee13688455b3345f7c8a4847101599c055
ssdeep: 12288:89EZj0kYsuotsOepQmv3d6C0jnNcS/gOi4FtTnkkg:82Zj3YsDClQ7jneSHPFtr
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T167B4233C5B675F1DE62894F192C4A2460EB27E2FECA0D9C7A5C831D7D03764E6630AB4
sha3_384: 1423ea208da3669096fb3f472bb5362de77e34080e6ec27481f8d8a7a485a719bf0e5d51d7e28bf9d5764f84352d6221
ep_bytes: ff250020400000000000000000000000
timestamp: 2067-10-26 19:26:22


Version Info:

Translation: 0x0000 0x04b0
Comments: 
CompanyName: 
FileDescription: sand
FileVersion: 1.0.0.0
InternalName: sand.exe
LegalCopyright: Copyright ©  2023
LegalTrademarks: 
OriginalFilename: sand.exe
ProductName: sand
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

Malware.AI.2795111810 also known as:

MicroWorld-eScanGen:Variant.Zusy.461704
FireEyeGen:Variant.Zusy.461704
ALYacGen:Variant.Zusy.461704
MalwarebytesMalware.AI.2795111810
VIPREGen:Variant.Zusy.461704
CrowdStrikewin/malicious_confidence_90% (W)
Elasticmalicious (high confidence)
APEXMalicious
Paloaltogeneric.ml
CynetMalicious (score: 99)
BitDefenderGen:Variant.Zusy.461704
EmsisoftGen:Variant.Zusy.461704 (B)
F-SecureHeuristic.HEUR/AGEN.1311050
GDataGen:Variant.Zusy.461704
AviraHEUR/AGEN.1311050
Antiy-AVLGrayWare/Win32.Wacapew
ArcabitTrojan.Zusy.D70B88
MicrosoftTrojan:Win32/Wacatac.B!ml
AhnLab-V3Trojan/Win.Generic.C5415620
MAXmalware (ai score=86)
TrendMicro-HouseCallTROJ_GEN.R002H09DO23
SentinelOneStatic AI – Suspicious PE
FortinetPossibleThreat.ZDS
DeepInstinctMALICIOUS

How to remove Malware.AI.2795111810?

Malware.AI.2795111810 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment