How to remove “Malware.AI.2850769644”?

The Malware.AI.2850769644 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.2850769644 virus can do?

CAPE extracted potentially suspicious content
The binary contains an unknown PE section name indicative of packing
The binary likely contains encrypted or compressed data.
Authenticode signature is invalid

How to determine Malware.AI.2850769644?


File Info:
name: 67BABE54651AF0FE3F21.mlw
path: /opt/CAPEv2/storage/binaries/7ec2cdc0a4c69e8e0254cb68ac54a2a723adefede3b7bdadc9952b891fbdf357
crc32: 1F3B63F5
md5: 67babe54651af0fe3f218db4dd6ec4e0
sha1: cb8edee89ca1369ce99e0ae312ddd9bd1cc24a33
sha256: 7ec2cdc0a4c69e8e0254cb68ac54a2a723adefede3b7bdadc9952b891fbdf357
sha512: a7c3da27305726d28592c09c5e72c472fa1f76db6eb1baf61925cacf9f6de4bcf1ab00ac0a1154dd165c955ca4c8389c691592faef7d10f10ac408ddf5386813
ssdeep: 24576:WoDLDXSsFMI45QCDEfjq0JUoWQUzHNn2oDLDXSsFMI45QCDEfjq0JUoWQUzHNn:WQDX5bCDEe0PWhn2QDX5bCDEe0PWhn
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T178A5DF9D8FE29E65CC871F3A00247C1863BE5D866D35F24C9A28747AFA770B8125D90F
sha3_384: f864b063171c3e6d83caf7c6ab5e99b960d8a7e6575511fb9c5d9d16212764e8ef90d16aae9cf26679a683a439d90603
ep_bytes: ff250020400000000000000000000000
timestamp: 2015-03-16 14:33:03

Version Info:
Translation: 0x0000 0x04b0
Comments: Quality Hacking Tool by www.hackolo.com
CompanyName: www.hackolo.com
FileDescription: Androidd Phone Hacker
FileVersion: 2.5.0.1
InternalName: Androidd Phone Hacker.exe
LegalCopyright: Copyright ©  2015
OriginalFilename: Androidd Phone Hacker.exe
ProductName: APHacker
ProductVersion: 2.5.0.1
Assembly Version: 1.0.0.0

Malware.AI.2850769644 also known as:

Bkav	W32.AIDetectMalware.CS
Lionic	Trojan.Win32.Presenoker.4!c
MicroWorld-eScan	Gen:Variant.Bulz.66709
Skyhigh	Artemis!Trojan
McAfee	Artemis!67BABE54651A
Cylance	unsafe
Arcabit	Trojan.Bulz.D10495
Symantec	ML.Attribute.HighConfidence
TrendMicro-HouseCall	TROJ_GEN.R002H09AA24
BitDefender	Gen:Variant.Bulz.66709
Avast	Win32:Malware-gen
Emsisoft	Gen:Variant.Bulz.66709 (B)
VIPRE	Gen:Variant.Bulz.66709
FireEye	Gen:Variant.Bulz.66709
Antiy-AVL	GrayWare/Win32.Presenoker
Xcitium	Malware@#2qxixco98i19b
Microsoft	PUA:Win32/Presenoker
GData	Gen:Variant.Bulz.66709
ALYac	Gen:Variant.Bulz.66709
MAX	malware (ai score=86)
Malwarebytes	Malware.AI.2850769644
Rising	PUA.Presenoker!8.F608 (CLOUD)
MaxSecure	Trojan.Malware.300983.susgen
AVG	Win32:Malware-gen
Cybereason	malicious.4651af
DeepInstinct	MALICIOUS
alibabacloud	Trojan:Win/Bulz

How to remove Malware.AI.2850769644?

Malware.AI.2850769644 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X