Malware.AI.3153085915 removal

The Malware.AI.3153085915 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.3153085915 virus can do?

Unconventionial language used in binary resources: Chinese (Simplified)
Authenticode signature is invalid
Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine Malware.AI.3153085915?


File Info:
name: 3173637A74213396F8B1.mlw
path: /opt/CAPEv2/storage/binaries/05e8f51fda34446ad3806c5726b62bd73193a9f3219a767a37198ba02acf4af6
crc32: AD58BB79
md5: 3173637a74213396f8b1caf729f4e30a
sha1: 7b3967f2d878b8dec517fbf459aaf3a8c4ba00dd
sha256: 05e8f51fda34446ad3806c5726b62bd73193a9f3219a767a37198ba02acf4af6
sha512: 445cd044c8a9178aa547cc1d7263dd8917d896f2a0eba13778062c94151b3586e89c62757adb2e97cf4b335bd2af1aaebdb29abb18948a694be66a9a106b4adb
ssdeep: 1536:ELnsQ7c/VfGzEH/W5TJZuLO74BLNhTCvxGOAKXJmgA1KU40paRdtAnSwxP2:ELnZc1G0YuLOEVNhT+CK01K/UgtU2
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T128E37C0B79D3C4FBE16000308DE267F6ABFEE8232A675E6BEB44870D5D215445B163E6
sha3_384: d94b8a5c59309e6ac931648fe7541228c59fff6c75044545e723583cc9b5046d1f72596d2136a5c55805d5bee706ab6f
ep_bytes: 558bec6aff6830b7410068c4b6400064
timestamp: 2013-10-26 02:30:46

Version Info:
0: [No Data]

Malware.AI.3153085915 also known as:

Bkav	W32.AIDetectMalware
MicroWorld-eScan	Gen:Heur.Mint.Zard.1
FireEye	Generic.mg.3173637a74213396
ALYac	Gen:Heur.Mint.Zard.1
Sangfor	Trojan.Win32.Save.BlackMoon
Cybereason	malicious.a74213
BitDefenderTheta	Gen:NN.ZexaF.36250.jqW@aOMHcwcb
Elastic	malicious (moderate confidence)
ESET-NOD32	a variant of Win32/Packed.BlackMoon.D suspicious
APEX	Malicious
Cynet	Malicious (score: 100)
Kaspersky	UDS:DangerousObject.Multi.Generic
BitDefender	Gen:Heur.Mint.Zard.1
Emsisoft	Gen:Heur.Mint.Zard.1 (B)
VIPRE	Gen:Heur.Mint.Zard.1
GData	Win32.Trojan-Stealer.BlackMoon.D
Antiy-AVL	Trojan[Banker]/Win32.BlackMoon.a
Xcitium	TrojWare.Win32.BlackMoon.R@8c1vff
Arcabit	Trojan.Mint.Zard.1
ZoneAlarm	UDS:DangerousObject.Multi.Generic
MAX	malware (ai score=84)
Malwarebytes	Malware.AI.3153085915
Panda	Trj/OCJ.D
Rising	Trojan.Generic@AI.100 (RDML:mN/qRnNOo7KJ3Y3aC4Agzw)
Fortinet	W32/CoinMiner.ESFJ!tr
DeepInstinct	MALICIOUS
CrowdStrike	win/malicious_confidence_60% (D)

How to remove Malware.AI.3153085915?

Malware.AI.3153085915 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X