Malware.AI.3120904484 removal guide

The Malware.AI.3120904484 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.3120904484 virus can do?

CAPE extracted potentially suspicious content
The binary likely contains encrypted or compressed data.
Authenticode signature is invalid

How to determine Malware.AI.3120904484?


File Info:
name: B4E69947D3F753BC88BE.mlw
path: /opt/CAPEv2/storage/binaries/af38770bb622df0b3875d1758586d441911cf6e265596bcc486c186001ab13b1
crc32: 6C67270F
md5: b4e69947d3f753bc88bee2641c68e24c
sha1: e6faad5c4e93ea3c1b6d38960c2923146ac2e924
sha256: af38770bb622df0b3875d1758586d441911cf6e265596bcc486c186001ab13b1
sha512: 3ce1973997f18930cd432ec5b67747900b8057806063064b00fb4b9a2afdee5c49408ebb587426bfd3cf7323daef692180d2e31c236b9b49e5dd8f2e439e9617
ssdeep: 12288:kxGFSH/tkMwRgRW8GpbpFEyYfoHDY+I0KPWxyZ1riA6Edhc4CveUtEWFGXvrHv5A:JIVkDgRWXFmHfoHDS0KOxM1riJEEZF
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1B2159D693695668FC017DD3589D4DDB1A7A4AC63A21BC24362C70C5FF84DAE6CB203B3
sha3_384: 09ce46975a03cacc96709c32752208d75888a828e3d35449b4379053d727259432a36cdee8a1a660b2f8927488d9d2f7
ep_bytes: ff250020400000000000000000000000
timestamp: 2022-09-22 08:06:44

Version Info:
Translation: 0x0000 0x04b0
Comments: 
CompanyName: Al's Auto Parts
FileDescription: Al's Auto Parts
FileVersion: 1.1.0.0
InternalName: SFIN.exe
LegalCopyright: Copyright ©  2022
LegalTrademarks: 
OriginalFilename: SFIN.exe
ProductName: Al's Auto Parts
ProductVersion: 1.1.0.0
Assembly Version: 1.1.0.0

Malware.AI.3120904484 also known as:

Bkav	W32.AIDetectNet.01
Elastic	malicious (high confidence)
MicroWorld-eScan	Gen:Variant.Tedy.209881
K7AntiVirus	Trojan ( 005988d11 )
Cyren	W32/MSIL_Agent.EAT.gen!Eldorado
Symantec	Scr.Malcode!gdn34
tehtris	Generic.Malware
ESET-NOD32	a variant of MSIL/Kryptik.AGNN
APEX	Malicious
Cynet	Malicious (score: 100)
Kaspersky	HEUR:Trojan-PSW.MSIL.Agensla.gen
BitDefender	Gen:Variant.Tedy.209881
Avast	Win32:PWSX-gen [Trj]
Ad-Aware	Gen:Variant.Tedy.209881
Emsisoft	Gen:Variant.Tedy.209881 (B)
DrWeb	Trojan.PackedNET.1588
VIPRE	Gen:Variant.Tedy.209881
FireEye	Generic.mg.b4e69947d3f753bc
Sophos	Generic ML PUA (PUA)
Ikarus	Trojan.MSIL.Agent
GData	Gen:Variant.Tedy.209881
Arcabit	Trojan.Tedy.D333D9
Microsoft	Trojan:Win32/Wacatac.B!ml
Google	Detected
AhnLab-V3	Infostealer/Win.Lokibot.R521970
VBA32	CIL.HeapOverride.Heur
ALYac	Gen:Variant.Tedy.209881
MAX	malware (ai score=86)
Malwarebytes	Malware.AI.3120904484
Rising	Trojan.Generic/MSIL@AI.100 (RDM.MSIL:XCdcrg+9WkBb0i57yCFj0g)
SentinelOne	Static AI – Malicious PE
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	MSIL/Kryptik.AGMJ!tr
BitDefenderTheta	Gen:NN.ZemsilF.34682.5m0@amwwY7f
AVG	Win32:PWSX-gen [Trj]

How to remove Malware.AI.3120904484?

Malware.AI.3120904484 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X