Malware

Malware.AI.3046448064 removal

Malware Removal

The Malware.AI.3046448064 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.3046448064 virus can do?

  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid
  • Attempts to modify proxy settings
  • Anomalous binary characteristics

How to determine Malware.AI.3046448064?



File Info:

name: 9ABB4213DD47A240A92A.mlw
path: /opt/CAPEv2/storage/binaries/fd2900cf5611b153a710f8b9f8b6cee20649bf4c659ebd5e2368ea9f09d3b5d0
crc32: 94CA23B9
md5: 9abb4213dd47a240a92aa3aa8b26c3fb
sha1: f87ac1f0669a06b0be885c0f4ae2dab69827fa05
sha256: fd2900cf5611b153a710f8b9f8b6cee20649bf4c659ebd5e2368ea9f09d3b5d0
sha512: 639bf58345c718c3e838094d1ab0d2d690896696cc0aaca3684cafb4abcf58d5ebcfa3f63efaa67de357f6f59aac17f50536cf9f9035b36714da9f5777367add
ssdeep: 6144:yHw7lPhs0FpSEpmCgziqtFR8qxp4yvIHdAJLcPlcmlKLiI05CuUUG/NlbDK3pKbP:kw7s2EE2l8qxp779iI0Pko
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1FC846D07FA4295B8D87BB871256FE337D6304A394016845BEFDB9E54F63A7E1AD08302
sha3_384: bea1304f3bef5a21356241d389e72ee6cd8eee7b9ca55201f33ff7c1cf2ae1f475de417ed4bcfc5f76120e79462c0aa8
ep_bytes: 83ec0cc7053845460001000000e8ae29
timestamp: 1970-01-01 00:00:00


Version Info:

0: [No Data]

Malware.AI.3046448064 also known as:

ElasticWindows.Trojan.Fickerstealer
MicroWorld-eScanGen:Variant.Fragtor.158075
FireEyeGeneric.mg.9abb4213dd47a240
CylanceUnsafe
SangforTrojan.Win32.Save.a
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/Agent.UMH
APEXMalicious
KasperskyHEUR:Trojan-PSW.Win32.Ficker.gen
BitDefenderGen:Variant.Fragtor.158075
Ad-AwareGen:Variant.Fragtor.158075
DrWebTrojan.PWS.Siggen3.24478
VIPREGen:Variant.Fragtor.158075
McAfee-GW-EditionBehavesLike.Win32.Generic.fh
SophosMal/Generic-S
GDataGen:Variant.Fragtor.158075
Antiy-AVLTrojan[PSW]/Win32.Ficker
ArcabitTrojan.Fragtor.D2697B
MicrosoftTrojan:Win32/Sabsik.FL.B!ml
AhnLab-V3Trojan/Win.Generic.C5276472
BitDefenderThetaGen:NN.ZexaF.34796.yGW@aOBb5Tg
ALYacGen:Variant.Fragtor.158075
MAXmalware (ai score=83)
VBA32suspected of Trojan.Downloader.gen
MalwarebytesMalware.AI.3046448064
RisingBackdoor.Androm!8.113 (TFE:5:s4zK97o7qRO)
FortinetW32/Agent.UMH!tr

How to remove Malware.AI.3046448064?

Malware.AI.3046448064 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment