About “Malware.AI.2870908006” infection

The Malware.AI.2870908006 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.2870908006 virus can do?

The binary likely contains encrypted or compressed data.
Authenticode signature is invalid

How to determine Malware.AI.2870908006?


File Info:
name: 392BAF2EBBBC5A5AC21C.mlw
path: /opt/CAPEv2/storage/binaries/e6b6a3d59b7c2347030a3f1fee079e23d837e296da78ca6e61938bf654c84ce0
crc32: EE353EF2
md5: 392baf2ebbbc5a5ac21c3ee07f6b9ef0
sha1: 396ff85b782550119d6ffc1dfd3f81de57dfff50
sha256: e6b6a3d59b7c2347030a3f1fee079e23d837e296da78ca6e61938bf654c84ce0
sha512: 2b5e4a2fe4f71e44b12ed1aeb3ec41abac8e381b81f5bfdba424ebe3a458e7db72880a9c4e56da3ccb4bb4364a9d10d4fad13000ec65ab827e45eba44a55e593
ssdeep: 24576:eA+yofsIAKcPZuSP12UYZ8JEvaivyQ12wAGAt+Re6PuITFNA88ybY86gB:lSsIAKuMSPdm5vaiaQEwS+juG58e
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T1205523195D0854BAC914E879C0894BB0DB2323E7DAD4F56FD8E1EE52FBC7540A70B28B
sha3_384: ab0adc0a833760e1b666f19a0da75d188db7a5e862b27a5b9a3d912c69e216e640c463aa6a56ffe06158ae4bee5f4be4
ep_bytes: c70550e0540000000000e9a1fcffff90
timestamp: 2022-11-27 17:33:18

Version Info:
0: [No Data]

Malware.AI.2870908006 also known as:

Bkav	W32.AIDetectMalware
Lionic	Trojan.Win32.Generic.lXyg
Elastic	malicious (high confidence)
FireEye	Generic.mg.392baf2ebbbc5a5a
Malwarebytes	Malware.AI.2870908006
Sangfor	Trojan.Win32.Save.a
K7AntiVirus	Riskware ( 0040eff71 )
K7GW	Riskware ( 0040eff71 )
CrowdStrike	win/malicious_confidence_90% (W)
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win32/Kryptik.HSZX
APEX	Malicious
BitDefenderTheta	Gen:NN.ZexaF.36250.tLW@aS3rl@m
Trapmine	suspicious.low.ml.score
Sophos	Generic ML PUA (PUA)
Avira	TR/Crypt.Agent.pghds
Antiy-AVL	Trojan/Win32.PossibleThreat
Cynet	Malicious (score: 100)
AhnLab-V3	Trojan/Win.Generic.R538541
Cylance	unsafe
MaxSecure	Trojan.Malware.109653022.susgen
Fortinet	W32/Fragtor.171413!tr
DeepInstinct	MALICIOUS

How to remove Malware.AI.2870908006?

Malware.AI.2870908006 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X