Malware.AI.3212719213 removal tips

The Malware.AI.3212719213 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.3212719213 virus can do?

The binary contains an unknown PE section name indicative of packing
The executable is compressed using UPX
Authenticode signature is invalid

How to determine Malware.AI.3212719213?


File Info:
name: CB56E335CCCBE61099E1.mlw
path: /opt/CAPEv2/storage/binaries/aa4d669b7e01fe319973fa70f0a3e6d45768aa67448149241f9fd5073aa208ab
crc32: C7DBB081
md5: cb56e335cccbe61099e1cd0edb56a792
sha1: 7529c937a30139d5bf83056dbb6e2df267ee71ca
sha256: aa4d669b7e01fe319973fa70f0a3e6d45768aa67448149241f9fd5073aa208ab
sha512: fc3e31b9c1024784b09e74ed2728ddae5ed9c45ff2ef8dd8ccdc20e6d2fed6daa3c72cab8fa4ffea0cd093b9ab93ec4002b12d806ff0e86dec8f2d0e20cf398f
ssdeep: 12288:qN/PPpH9dySPIHsCmwQ8GMzo/KFz8RUTSh5HMbW:qNfJySPr3wPGj68RG65HT
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1AFE48D20B3FD5365D3B1E1737EA18754AE637CA64A34B95B2C94763EA930330061CBA7
sha3_384: 59e470d4f383c500035ff1c957d579f045c400ffcca670d4f73df6073f58b9869e9dac7e8ccc2e7a67a1f6b1c4759396
ep_bytes: 60be000048008dbe0010f8ff57eb0b90
timestamp: 2022-09-24 10:23:47

Version Info:
Translation: 0x0809 0x04b0

Malware.AI.3212719213 also known as:

Bkav	W32.AIDetect.malware1
Elastic	malicious (moderate confidence)
MicroWorld-eScan	AIT:Trojan.GenericTKA.48
FireEye	Generic.mg.cb56e335cccbe610
McAfee	Artemis!CB56E335CCCB
VIPRE	AIT:Trojan.GenericTKA.48
Sangfor	Trojan.Win32.Save.a
CrowdStrike	win/malicious_confidence_100% (W)
Baidu	AutoIt.Trojan.Injector.d
Cyren	W32/AutoIt.QE.gen!Eldorado
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win32/Injector.Autoit.BKC
APEX	Malicious
Cynet	Malicious (score: 100)
Kaspersky	HEUR:Trojan.Script.Generic
BitDefender	AIT:Trojan.GenericTKA.48
NANO-Antivirus	Trojan.Script.AutoIt.estdtw
Avast	Script:SNH-gen [Trj]
Ad-Aware	AIT:Trojan.GenericTKA.48
Sophos	Troj/Autoit-BSC
McAfee-GW-Edition	Trojan-AitInject.ar
Trapmine	malicious.high.ml.score
Emsisoft	AIT:Trojan.GenericTKA.48 (B)
Avira	HEUR/AGEN.1234318
Microsoft	Trojan:Win32/Sabsik.FL.B!ml
GData	AIT:Trojan.GenericTKA.48
Google	Detected
BitDefenderTheta	Gen:NN.ZexaF.34698.OmW@aWSwv2oi
ALYac	AIT:Trojan.GenericTKA.48
MAX	malware (ai score=88)
Malwarebytes	Malware.AI.3212719213
Rising	Trojan.Injector/Autoit!1.C5B5 (CLASSIC)
Ikarus	Trojan-Spy.Agent
Fortinet	W32/ULPM.16C0!tr
AVG	Script:SNH-gen [Trj]
Cybereason	malicious.5cccbe

How to remove Malware.AI.3212719213?

Malware.AI.3212719213 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X