Should I remove “Malware.AI.302150212”?

The Malware.AI.302150212 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.302150212 virus can do?

The binary contains an unknown PE section name indicative of packing
The executable is compressed using UPX
Authenticode signature is invalid

How to determine Malware.AI.302150212?


File Info:
name: BEA32F84A888AFE5CFA7.mlw
path: /opt/CAPEv2/storage/binaries/cabdcde2c47d3a69c73e301c4895d18333f0f32c7302f91ac6aae0b11dd83426
crc32: 4FA35911
md5: bea32f84a888afe5cfa749823b7f97cb
sha1: 1b8d8902c2e0412f7721c4d8af6b7c9989360e8a
sha256: cabdcde2c47d3a69c73e301c4895d18333f0f32c7302f91ac6aae0b11dd83426
sha512: 2d6d8f9e0325f02cde0ccf0c7f68b0c630e20fc7fbba1fd50fe14195d4e75d9301cf758ec416b7c0504c70d3a1cd146139d58cffcf960d51588869b41aeaa068
ssdeep: 3072:1FzB1r1i43j9yhJ4PnY8gYww9iZhlpu8Kf97kwS2BfuzfyAoutAKs:1BB1r1pJyHJfzXlY8Kf97B5OpoSA
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T16614BF027991C0F3C84685741D5E9752EBB2FAB0116582D3BFC8AC9E9E4B5E1873F31A
sha3_384: cc631db5a7ca7b77b79ac1b1e39517fa6f1c063ec3867200737bd3ac7637bf00cdabbd8f908a46d2ce38f3092e8c89ef
ep_bytes: 60be001044008dbe0000fcff5789e58d
timestamp: 2009-09-25 18:57:32

Version Info:
FileDescription: 
FileVersion: 1, 0, 48, 05
InternalName: 
LegalCopyright: 
OriginalFilename: 
ProductName: 
ProductVersion: 1, 0, 48, 05
Translation: 0x0409 0x04b0

Malware.AI.302150212 also known as:

Lionic	Trojan.Win32.Generic.4!c
MicroWorld-eScan	Trojan.GenericKDZ.89131
FireEye	Generic.mg.bea32f84a888afe5
McAfee	RDN/Generic.dx
Cylance	unsafe
Zillya	Trojan.Generic.Win32.1660406
Sangfor	Trojan.Win32.Agent.Vsln
Alibaba	Trojan:Win32/Generic.acb3d2ee
Cybereason	malicious.2c2e04
Elastic	malicious (moderate confidence)
APEX	Malicious
BitDefender	Trojan.GenericKDZ.89131
Avast	Win32:Malware-gen
Sophos	Generic Reputation PUA (PUA)
F-Secure	Heuristic.HEUR/AGEN.1334848
VIPRE	Trojan.GenericKDZ.89131
TrendMicro	TROJ_GEN.R002C0PDB23
McAfee-GW-Edition	BehavesLike.Win32.Generic.dm
Emsisoft	Trojan.GenericKDZ.89131 (B)
GData	Trojan.GenericKDZ.89131
Avira	HEUR/AGEN.1334848
Xcitium	Packed.Win32.MUPX.Gen@24tbus
Arcabit	Trojan.Generic.D15C2B
Microsoft	Trojan:Win32/Wacatac.B!ml
Cynet	Malicious (score: 100)
AhnLab-V3	Trojan/Win.Generic.C5234901
ALYac	Trojan.GenericKDZ.89131
MAX	malware (ai score=87)
Malwarebytes	Malware.AI.302150212
TrendMicro-HouseCall	TROJ_GEN.R002C0PDB23
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	W32/ULPM.16C0!tr
AVG	Win32:Malware-gen
DeepInstinct	MALICIOUS
CrowdStrike	win/malicious_confidence_70% (D)

How to remove Malware.AI.302150212?

Malware.AI.302150212 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X