Malware.AI.2972915474 malicious file

The Malware.AI.2972915474 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.2972915474 virus can do?

Sample contains Overlay data
The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid

How to determine Malware.AI.2972915474?


File Info:
name: 3A69F915394BF7CB1F26.mlw
path: /opt/CAPEv2/storage/binaries/dc086a395d3d90acb05241e905f6c721bc225c7a35d6f4758e41a8da82f8bd74
crc32: B56C1F85
md5: 3a69f915394bf7cb1f26199f8fb3ba35
sha1: 253dcf08bbbe951435eb11e02e9830121d2b2b53
sha256: dc086a395d3d90acb05241e905f6c721bc225c7a35d6f4758e41a8da82f8bd74
sha512: d79e44def112cff29da858633c7781d6e5bba50a29db283c12fda6657117d7af5bb022d6aa36549190cd1b3158a52b1d09353affd08f04fd7ca8581777510a77
ssdeep: 24576:FfxrWRcWikvay4iIPr4OuHPMrlI/yopUQuQ5O3h3JMtbE:edvaoIpZIJ+hMtbE
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T147550A93AACB4EB2CDD327F055C753766338DE208A26CF6BE608C5369E936C56C49701
sha3_384: 7f79269b30d54b3365e2d7d89995233618ec826343396cff23a644f4236d77fe0832d16a1b618e1f72da1092764b45bc
ep_bytes: 83ec0cc7053810490000000000e80ec0
timestamp: 2020-11-01 20:48:36

Version Info:
0: [No Data]

Malware.AI.2972915474 also known as:

Bkav	W32.AIDetectMalware
Lionic	Trojan.Win32.Generic.4!c
Elastic	malicious (moderate confidence)
Cynet	Malicious (score: 100)
FireEye	Generic.mg.3a69f915394bf7cb
Skyhigh	BehavesLike.Win32.Generic.tm
McAfee	Artemis!3A69F915394B
Malwarebytes	Malware.AI.2972915474
Sangfor	PUP.Win32.DownloadSponsor.mt
NANO-Antivirus	Trojan.Win32.Reconyc.etyhya
Avast	FileRepMalware [Trj]
Sophos	Generic ML PUA (PUA)
DrWeb	Trojan.Siggen7.30976
Ikarus	Trojan.Win32.Shutdowner
Jiangmin	Trojan.Reconyc.aske
Google	Detected
Antiy-AVL	Trojan/Win32.Reconyc
Microsoft	PUADlManager:Win32/DownloadSponsor
Varist	W32/Agent.HER.gen!Eldorado
VBA32	Trojan.Downloader
Cylance	unsafe
Rising	Trojan.Zpevdo!8.F912 (RDMK:cmRtazpBH4u9k+ojaxOo6tg7Ngi6)
Yandex	Trojan.Agent!CRbmlDnIk5s
MaxSecure	Trojan.Malware.300983.susgen
AVG	FileRepMalware [Trj]
DeepInstinct	MALICIOUS

How to remove Malware.AI.2972915474?

Malware.AI.2972915474 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X