What is “Malware.AI.2819765378”?

The Malware.AI.2819765378 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.2819765378 virus can do?

CAPE extracted potentially suspicious content
Authenticode signature is invalid
Binary compilation timestomping detected

How to determine Malware.AI.2819765378?


File Info:
name: 6EDD9B961ABF23021731.mlw
path: /opt/CAPEv2/storage/binaries/04056f6ad1d44ff06570351f35421d1c1f42f461b379b9d5b165369e66559299
crc32: 92D19736
md5: 6edd9b961abf230217316e4634053eaa
sha1: a0ea7056d3935ed1dd187acbeefe991f4d5945f8
sha256: 04056f6ad1d44ff06570351f35421d1c1f42f461b379b9d5b165369e66559299
sha512: a667d40507106d5b57f05c3ad8be3a67653ab67c1d34eb5073ef4932dac60bb5065a1df53768cf70b073403c418995ef6cc4564c5e424a0b178d5330d8775838
ssdeep: 49152:iC9WFwIYC9WFwILC9WFwIYC9WFwIYC9WFwIYC9WFwIFD9WFwK:iC9WFFYC9WFFLC9WFFYC9WFFYC9WFFYO
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T16C757C31B35E861ED4EF46F8D610699F4FA28839F317F4E604127A4E6D1BFA1A61C342
sha3_384: 375f4f23b89f343d66515161e45123c23a91f7aa3edab7d38909c7697c24df47db0c31358ea69578b0e2e9434bfb89bc
ep_bytes: ff250020400000000000000000000000
timestamp: 2053-06-20 17:52:45

Version Info:
Translation: 0x0000 0x04b0
Comments: 
CompanyName: 
FileDescription: Loader
FileVersion: 1.0.0.0
InternalName: Loader.exe
LegalCopyright: Copyright KeyAuth.win
LegalTrademarks: 
OriginalFilename: Loader.exe
ProductName: Loader
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

Malware.AI.2819765378 also known as:

Bkav	W32.AIDetectNet.01
Lionic	Trojan.Win32.Lazy.4!c
Elastic	malicious (high confidence)
MicroWorld-eScan	Gen:Variant.Lazy.236584
FireEye	Generic.mg.6edd9b961abf2302
CAT-QuickHeal	Trojan.YakbeexMSIL.ZZ4
McAfee	Artemis!6EDD9B961ABF
Cylance	Unsafe
Sangfor	Hacktool.Win32.Agent.Vesj
K7AntiVirus	Riskware ( 005923f41 )
K7GW	Riskware ( 005923f41 )
Cyren	W32/Trojan.FYE.gen!Eldorado
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win32/RiskWare.HackTool.Agent_AGen.E
APEX	Malicious
Paloalto	generic.ml
BitDefender	Gen:Variant.Lazy.236584
Avast	FileRepMalware [Misc]
Ad-Aware	Gen:Variant.Lazy.236584
VIPRE	Gen:Variant.Lazy.236584
McAfee-GW-Edition	Artemis!PUP
Emsisoft	Gen:Variant.Lazy.236584 (B)
SentinelOne	Static AI – Malicious PE
GData	Gen:Variant.Lazy.236584
Google	Detected
Avira	HEUR/AGEN.1250817
MAX	malware (ai score=82)
Arcabit	Trojan.Lazy.D39C28
Microsoft	Trojan:Win32/Sabsik.TE.B!ml
Cynet	Malicious (score: 100)
AhnLab-V3	Malware/Win.Generic.C5216904
BitDefenderTheta	Gen:NN.ZemsilF.34606.In0@aKBeMBi
ALYac	Gen:Variant.Lazy.236584
Malwarebytes	Malware.AI.2819765378
TrendMicro-HouseCall	TROJ_GEN.R002H0CHS22
Rising	HackTool.Agent!8.335 (CLOUD)
Ikarus	Trojan-Downloader.MSIL.Agent
MaxSecure	Trojan.Malware.300983.susgen
AVG	FileRepMalware [Misc]
CrowdStrike	win/malicious_confidence_60% (W)

How to remove Malware.AI.2819765378?

Malware.AI.2819765378 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X