Should I remove “Malware.AI.3054093716”?

The Malware.AI.3054093716 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.3054093716 virus can do?

Unconventionial language used in binary resources: Korean
Authenticode signature is invalid

How to determine Malware.AI.3054093716?


File Info:
name: EDAE93996FFD8078B341.mlw
path: /opt/CAPEv2/storage/binaries/462823c084bb732491c0baddea36058588ba953f93f62214c4b66823c6c1f5f9
crc32: 88B25E90
md5: edae93996ffd8078b341db2876a1a3e6
sha1: 7ebac47bbc0eaee6330a2c51d4f989e34d55f6eb
sha256: 462823c084bb732491c0baddea36058588ba953f93f62214c4b66823c6c1f5f9
sha512: c0bdbdd4f3ca7f6f8c8c6374cf9078c451a929cfb50d2cad7cb18b08cd3456bf2d2bba94722cc33516e68bde51012b162b6c40613cf8be5466fb10a801c3ba47
ssdeep: 384:FVzDn3HsaLjM014WfD+b+bhGE9vvqZ2WzkjvLP3oV23vnCjXOaU/6ypOFl7ez5W6:n5+CFGyvvU2RzP4ofMOaQ6AOFtKnn
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T1E9A25B23F79B4362E45142B02AB2A27FC27FB9307F0452C7A79146991E382E5AD7305F
sha3_384: 6e8286ec2163ba90bd28e75303015c6ab29a083616bca3d060bcde4860305c81a83c134669f0ae5eff80d994c13fe273
ep_bytes: e8ce040000e974feffffc3836104008b
timestamp: 2020-05-14 01:50:57

Version Info:
CompanyName: 
FileDescription: COM Surrogate
FileVersion: 6.1.7600.16385
InternalName: dllhost.exe
LegalCopyright: ⓒ Microsoft Corporation. All rights reserved.
OriginalFilename: dllhost.exe
ProductName: Microsoftⓡ Windowsⓡ Operating System
ProductVersion: 6.1.7600.16385
Translation: 0x0412 0x04b0

Malware.AI.3054093716 also known as:

Lionic	Trojan.Win32.Doris.4!c
MicroWorld-eScan	Gen:Variant.Doris.12761
CAT-QuickHeal	Trojan.Doris
ALYac	Gen:Variant.Doris.12761
Malwarebytes	Malware.AI.3054093716
VIPRE	Gen:Variant.Doris.12761
Sangfor	Trojan.Win32.Agent.Vqvy
CrowdStrike	win/malicious_confidence_90% (D)
Cyren	W32/ABRisk.EDNY-4937
Symantec	ML.Attribute.HighConfidence
Cynet	Malicious (score: 100)
BitDefender	Gen:Variant.Doris.12761
Avast	Win32:Malware-gen
Emsisoft	Gen:Variant.Doris.12761 (B)
McAfee-GW-Edition	Artemis
FireEye	Generic.mg.edae93996ffd8078
GData	Gen:Variant.Doris.12761
MAX	malware (ai score=89)
Antiy-AVL	Trojan/Win32.Johnnie
Arcabit	Trojan.Doris.D31D9
Microsoft	Trojan:Win32/Wacatac.H!ml
Google	Detected
McAfee	Artemis!EDAE93996FFD
Cylance	unsafe
Panda	Trj/Chgt.AD
TrendMicro-HouseCall	TROJ_GEN.R002H09K422
MaxSecure	Trojan.Malware.194546802.susgen
Fortinet	W32/Johnnie.DTR!tr
AVG	Win32:Malware-gen
DeepInstinct	MALICIOUS

How to remove Malware.AI.3054093716?

Malware.AI.3054093716 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X