Should I remove “Malware.AI.3013952612”?

The Malware.AI.3013952612 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.3013952612 virus can do?

Unconventionial language used in binary resources: Chinese (Simplified)
The binary contains an unknown PE section name indicative of packing
The executable is compressed using UPX
Authenticode signature is invalid

How to determine Malware.AI.3013952612?


File Info:
name: C675BFFEFB9E2C519583.mlw
path: /opt/CAPEv2/storage/binaries/33a1758af6c562bf08a20cc9f282d753a9f6ce812707bbf9d1d7f357a0f523e4
crc32: 4714F069
md5: c675bffefb9e2c5195833360197705da
sha1: 2faf1bd653cacb36ffb34df91bebceb9200fc050
sha256: 33a1758af6c562bf08a20cc9f282d753a9f6ce812707bbf9d1d7f357a0f523e4
sha512: 9fd8030b50c2db16a2bd0a983eaf54a5a6a58129d802b15cc40dc931c276a68b9d5bb3c922f2940099e89a624cb10d5319587b32c33fd2540d988958f7f128d4
ssdeep: 768:S2VO7u/wrZe52EpusAPRWz4oMxFbjskVZuS8h8IU9:S2VLwrZeTuhPI4oA8kV3Z
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T16FB3E40226018969F35C0B385A46FBE458A9AD7C94E4F64FF47CBE7A2D32093497724F
sha3_384: 34c90696bf5afb36a66b37064584f18e31830e9dfd964e542fed2e8faaa5237decd05c695da2ce5e87bbfaaf7de42eb4
ep_bytes: 60be00d02f008dbe0040fdff5783cdff
timestamp: 2012-07-15 07:42:54

Version Info:
0: [No Data]

Malware.AI.3013952612 also known as:

Bkav	W32.AIDetect.malware1
Lionic	Trojan.Win32.Generic.4!c
Elastic	malicious (moderate confidence)
MicroWorld-eScan	Trojan.GenericKDZ.88961
FireEye	Generic.mg.c675bffefb9e2c51
McAfee	GenericRXAA-AA!C675BFFEFB9E
Sangfor	Suspicious.Win32.Save.a
Cybereason	malicious.653cac
APEX	Malicious
Paloalto	generic.ml
ClamAV	Win.Dropper.Xytets-9953031-0
BitDefender	Trojan.GenericKDZ.88961
Avast	Win32:Evo-gen [Susp]
Ad-Aware	Trojan.GenericKDZ.88961
Sophos	Generic ML PUA (PUA)
Comodo	Packed.Win32.MUPX.Gen@24tbus
DrWeb	Trojan.Xytets
McAfee-GW-Edition	Artemis!Trojan
Trapmine	malicious.moderate.ml.score
Emsisoft	Trojan.GenericKDZ.88961 (B)
Ikarus	Trojan.Win32.Rimecud
GData	Trojan.GenericKDZ.88961
Avira	HEUR/AGEN.1234327
Microsoft	Trojan:Win32/Wacatac.B!ml
Cynet	Malicious (score: 100)
AhnLab-V3	Trojan/Win32.Jorik.R74525
BitDefenderTheta	Gen:NN.ZexaF.34742.gmW@ayRY1dmj
ALYac	Trojan.GenericKDZ.88961
MAX	malware (ai score=82)
VBA32	BScope.Trojan.Xytets
Malwarebytes	Malware.AI.3013952612
TrendMicro-HouseCall	TROJ_GEN.R002H09FP22
SentinelOne	Static AI – Malicious PE
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	W32/ULPM.16C0!tr
AVG	Win32:Evo-gen [Susp]
CrowdStrike	win/malicious_confidence_100% (D)

How to remove Malware.AI.3013952612?

Malware.AI.3013952612 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X