About “Malware.AI.3082091981” infection

Malware Removal

The Malware.AI.3082091981 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware - Review 2020

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
6-day free trial available.

What Malware.AI.3082091981 virus can do?

  • Executable code extraction
  • Performs some HTTP requests
  • The binary likely contains encrypted or compressed data.
  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

Related domains:

z.whorecord.xyz
a.tomx.xyz
edgedl.me.gvt1.com

How to determine Malware.AI.3082091981?


File Info:

crc32: CD803E02
md5: cfb94a7d7cd3e318116583e82ac1ddc5
name: CFB94A7D7CD3E318116583E82AC1DDC5.mlw
sha1: 2dfe6d97d6e765ae383fc1b07dbdffa815f2599a
sha256: 2cb4f25bdcd46ef4c65f274388eceee13c74b20ba7e21a597c06c9cc05a4f5db
sha512: 56992941be7928f747b6fd7114576cef0dd24a9bf0e96ecee09e68d000063aed0fcf9aafe440c4bd6d6967065aa75d300dc1a127354ce6cf23ce79fea7c36f32
ssdeep: 1536:/eYBhXq+cjGBHdksHzofZxtRMPxPzMzuEjd9Y6C66ildqKslndCej3HrS:mY8OBzK4pQz9NzanIej3LS
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:

Translation: 0x0409 0x04b0
InternalName: YRbL
FileVersion: 6.15.0004
CompanyName: VpGlwnD YKO Q7cbpXSwVyMX0o
Comments: HGo0L BurPu FgW7H
ProductName: HGo0L BurPu FgW7H
ProductVersion: 6.15.0004
FileDescription: LW8aR RZPj D8MJlwRh
OriginalFilename: YRbL.exe

Malware.AI.3082091981 also known as:

BkavW32.AIDetect.malware1
K7AntiVirusNetWorm ( 700000151 )
LionicTrojan.Win32.VBKrypt.4!c
Elasticmalicious (high confidence)
CynetMalicious (score: 100)
CylanceUnsafe
ZillyaTrojan.Injector.Win32.417222
SangforTrojan.Win32.Save.a
CrowdStrikewin/malicious_confidence_100% (D)
AlibabaTrojan:Win32/VBKrypt.64376998
K7GWNetWorm ( 700000151 )
Cybereasonmalicious.7d6e76
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/Injector.SIB
APEXMalicious
AvastWin32:Kolab-ZW [Trj]
KasperskyTrojan.Win32.VBKrypt.pinb
NANO-AntivirusTrojan.Win32.Inject.uqixt
TencentWin32.Trojan.Vbkrypt.Tdft
SophosML/PE-A + Mal/VBCheMan-C
ComodoMalware@#316y55dnnaxbg
BitDefenderThetaAI:Packer.1D0DBF3F20
VIPRETrojan.Win32.Generic!BT
McAfee-GW-EditionBehavesLike.Win32.PWSZbot.cc
FireEyeGeneric.mg.cfb94a7d7cd3e318
SentinelOneStatic AI – Malicious PE
JiangminTrojan/Vilsel.aend
WebrootW32.Malware.Gen
AviraTR/Dropper.Gen
eGambitGeneric.Dropper
Antiy-AVLTrojan/Generic.ASMalwS.162930B
MicrosoftTrojan:Win32/Wacatac.B!ml
AhnLab-V3Trojan/Win32.VBKrypt.R27865
McAfeeArtemis!CFB94A7D7CD3
MAXmalware (ai score=100)
MalwarebytesMalware.AI.3082091981
PandaGeneric Malware
IkarusTrojan.Win32.Spy
FortinetW32/Jorik_Steckt.N!tr
AVGWin32:Kolab-ZW [Trj]

How to remove Malware.AI.3082091981?

Malware.AI.3082091981 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

Leave a Comment