About “Malware.AI.2835797374” infection

The Malware.AI.2835797374 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.2835797374 virus can do?

The binary contains an unknown PE section name indicative of packing
The executable is compressed using UPX
Authenticode signature is invalid

How to determine Malware.AI.2835797374?


File Info:
name: 80C19FC9DADE45054FE6.mlw
path: /opt/CAPEv2/storage/binaries/b56c47b4b3abb8474e3316b0ff7ed0db6cb34b3e23218d216f2ad6b60ad0962a
crc32: 00307AB5
md5: 80c19fc9dade45054fe67e1df1624dfd
sha1: 0a48696abf3711cac9828ade4d472bd69f603094
sha256: b56c47b4b3abb8474e3316b0ff7ed0db6cb34b3e23218d216f2ad6b60ad0962a
sha512: 736cf52915f5beedb4929cdcac528e97d5f631ff3bbe2c42e29fad8fa11322319cf2c66359169003208ff3764cfced8389a7f92cf8ecd927aec6687775e98cd3
ssdeep: 768:dC+MYIOlnToIf1coi39nGc72BIuKqFAuMwrnbcuyD7UDO:c+VIOlnToIfeoi3pGpqupTnouy8DO
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1F723AE82B7E953FBE4FA413908F3651F0134B43556E1EA9BA59C102B0E92F886D243DF
sha3_384: 958f95f5204a4aef45ba99e34a32e1fc4f471a7e2710d7f9142998ea9d8d08d4c4d6914886abd1800f9e368873843149
ep_bytes: 60be151041008dbeebfffeff5789e58d
timestamp: 2018-02-01 20:18:00

Version Info:
0: [No Data]

Malware.AI.2835797374 also known as:

Bkav	W32.AIDetect.malware1
MicroWorld-eScan	Gen:Trojan.Heur.cmW@!FG8T6c
ALYac	Gen:Trojan.Heur.cmW@!FG8T6c
Cylance	Unsafe
Sangfor	Suspicious.Win32.Save.a
CrowdStrike	win/malicious_confidence_100% (D)
Cyren	W32/Agent.BJD.gen!Eldorado
Elastic	malicious (moderate confidence)
APEX	Malicious
BitDefender	Gen:Trojan.Heur.cmW@!FG8T6c
Avast	Win32:Malware-gen
Ad-Aware	Gen:Trojan.Heur.cmW@!FG8T6c
Sophos	ML/PE-A
Comodo	Packed.Win32.MUPX.Gen@24tbus
VIPRE	Gen:Trojan.Heur.cmW@!FG8T6c
McAfee-GW-Edition	BehavesLike.Win32.Sytro.pm
Trapmine	malicious.moderate.ml.score
FireEye	Generic.mg.80c19fc9dade4505
Emsisoft	Gen:Trojan.Heur.cmW@!FG8T6c (B)
SentinelOne	Static AI – Suspicious PE
GData	Gen:Trojan.Heur.cmW@!FG8T6c
Google	Detected
Avira	HEUR/AGEN.1214989
MAX	malware (ai score=88)
Antiy-AVL	Trojan/Generic.ASMalwS.720E
Microsoft	Trojan:Win32/Wacatac.B!ml
Cynet	Malicious (score: 100)
Acronis	suspicious
McAfee	RDN/Generic.dx
Malwarebytes	Malware.AI.2835797374
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	W32/ULPM.16C0!tr
BitDefenderTheta	AI:Packer.8C39FADB1B
AVG	Win32:Malware-gen
Cybereason	malicious.9dade4

How to remove Malware.AI.2835797374?

Malware.AI.2835797374 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X