Malware.AI.2896215137 removal instruction

The Malware.AI.2896215137 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.2896215137 virus can do?

SetUnhandledExceptionFilter detected (possible anti-debug)
Yara rule detections observed from a process memory dump/dropped files/CAPE
Dynamic (imported) function loading detected
Authenticode signature is invalid

How to determine Malware.AI.2896215137?


File Info:
name: 7D7D3B5330157D8B8BAA.mlw
path: /opt/CAPEv2/storage/binaries/b92ce472ec5ba28bb319588dddc10ff27fb150261c170903d8d4b2cf0923175f
crc32: A3804FD2
md5: 7d7d3b5330157d8b8baaf40887299dcc
sha1: afe6fab92ce38d22dd9a99f9dea33425bdf4566d
sha256: b92ce472ec5ba28bb319588dddc10ff27fb150261c170903d8d4b2cf0923175f
sha512: 5b91d80a5eb0890374ce7013331dda609476f5ae9e32cf0437dd15cd042f1fc3213ffb3fab417368bc87d7a22955175d81a0873fcef8819a413a7419f6d022c6
ssdeep: 768:I/LoOgxoWkzRgSO+OYu+GhTGSNzIlsjZKgl7fD:cXFWkzRdbu+GhT7zIluF
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T1F2F22B1335938072D55252F02866A76AC3BEB9314B5232D3B3C1DD7A4E312E5BC73A1B
sha3_384: fce62d2a1c616aabf1f942d1c5a3a113d17c2c31060f8080bf8e3969ea8d945a04107095ff73c91c2e924a9e5730a741
ep_bytes: e802040000e974feffff558bec8b4508
timestamp: 2022-02-05 15:41:29

Version Info:
0: [No Data]

Malware.AI.2896215137 also known as:

Bkav	W32.AIDetect.malware1
Lionic	Trojan.Win32.Zusy.4!c
MicroWorld-eScan	Gen:Variant.Zusy.400830
FireEye	Generic.mg.7d7d3b5330157d8b
ALYac	Gen:Variant.Zusy.400830
Cylance	Unsafe
Sangfor	Suspicious.Win32.Save.a
K7AntiVirus	Unwanted-Program ( 0055bf7a1 )
K7GW	Unwanted-Program ( 0055bf7a1 )
Arcabit	Trojan.Zusy.D61DBE
Cyren	W32/GameHack.BK.gen!Eldorado
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win32/GameHack.DTR potentially unsafe
TrendMicro-HouseCall	TROJ_GEN.R002H09B622
Paloalto	generic.ml
BitDefender	Gen:Variant.Zusy.400830
Avast	FileRepMalware
Ad-Aware	Gen:Variant.Zusy.400830
Emsisoft	Gen:Variant.Zusy.400830 (B)
McAfee-GW-Edition	GenericRXRR-IB!7D7D3B533015
Trapmine	suspicious.low.ml.score
Sophos	Mal/Generic-R + Mal/Behav-010
APEX	Malicious
Jiangmin	Trojan.Generic.gwtef
MAX	malware (ai score=83)
Antiy-AVL	Trojan/Generic.ASMalwS.3522721
Gridinsoft	Ransom.Win32.Sabsik.sa
Microsoft	Program:Win32/Wacapew.C!ml
GData	Gen:Variant.Zusy.400830
Cynet	Malicious (score: 100)
AhnLab-V3	Malware/Win.Generic.R458995
McAfee	GenericRXRR-IB!7D7D3B533015
VBA32	BScope.Trojan.Pynamer
Malwarebytes	Malware.AI.2896215137
Rising	PUA.GameHack!8.223 (CLOUD)
SentinelOne	Static AI – Malicious PE
Fortinet	W32/Johnnie.DTR!tr
AVG	FileRepMalware
Cybereason	malicious.92ce38
MaxSecure	Trojan.Malware.138710517.susgen

How to remove Malware.AI.2896215137?

Malware.AI.2896215137 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X