Malware

Malware.AI.3269512344 removal guide

Malware Removal

The Malware.AI.3269512344 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.3269512344 virus can do?

  • Dynamic (imported) function loading detected
  • CAPE extracted potentially suspicious content
  • Authenticode signature is invalid

How to determine Malware.AI.3269512344?



File Info:

name: 4B2830EC3A21977B71E9.mlw
path: /opt/CAPEv2/storage/binaries/44faa40cbec29485ab05278edad66ba9594b2f2fcae80c9a4e94160c5ff22a88
crc32: A7AB40B3
md5: 4b2830ec3a21977b71e9121c8865d403
sha1: cc8cea85ad4cce6ed35b1ab29a948e47c5b9a565
sha256: 44faa40cbec29485ab05278edad66ba9594b2f2fcae80c9a4e94160c5ff22a88
sha512: 244ceda645ee32f9fdf2eae5b6b54c45cb94454bb9a1a76a064e64584afdec63cf1527fd276a59b19b6c4ad0b65a60fa14b162449136a1c9cbb9dd1da660d30b
ssdeep: 192:FsK4MTxhHb6RLemiwzMP/k+6ykBmrOCzA1+90jT31kvTviQ1/uToT07gT8Ts:FsaTbYiw3+6yDrOCL+lkbviMke07Wi
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T10362FA267BED8620F1FE4DFF88FF4A000735B6066931DA0D2CD5204E1E677608B65BA6
sha3_384: 659b8e81ed5917892bed994c8259e1c07869cbb46314e270683fb32e7aa3198d09695c104330409586471b3c1ac59b47
ep_bytes: ff250020400000000000000000000000
timestamp: 2020-05-07 12:35:57


Version Info:

Translation: 0x0000 0x04b0
Comments: 
CompanyName: 
FileDescription: NordVPN Checker
FileVersion: 1.0.0.0
InternalName: NordVPN Checker.exe
LegalCopyright: Retroz-Modding.com
LegalTrademarks: 
OriginalFilename: NordVPN Checker.exe
ProductName: NordVPN Checker
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

Malware.AI.3269512344 also known as:

LionicTrojan.Win32.Ursu.4!c
MicroWorld-eScanGen:Variant.Ursu.718218
CAT-QuickHealPUA.BruteforceFC.S19436283
McAfeeRDN/Generic PUP.z
CylanceUnsafe
ZillyaTool.BruteForce.Win32.3298
SangforSuspicious.Win32.Razy.592831
K7AntiVirusHacktool ( 005596a91 )
AlibabaTrojan:MSIL/HacktoolX.ba5caa01
K7GWHacktool ( 005596a91 )
CrowdStrikewin/grayware_confidence_70% (W)
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of MSIL/HackTool.BruteForce.MA
TrendMicro-HouseCallTROJ_GEN.R002C0PB622
Paloaltogeneric.ml
BitDefenderGen:Variant.Ursu.718218
AvastWin32:HacktoolX-gen [Trj]
TencentWin32.Trojan.Bulz.Pcsu
EmsisoftGen:Variant.Ursu.718218 (B)
ComodoMalware@#2xq8kzi2zrti1
VIPRETrojan.Win32.Generic!BT
TrendMicroTROJ_GEN.R002C0PB622
McAfee-GW-EditionRDN/Generic PUP.z
SentinelOneStatic AI – Suspicious PE
FireEyeGen:Variant.Ursu.718218
APEXMalicious
Antiy-AVLTrojan/Generic.ASMalwS.31B1865
MicrosoftProgram:Win32/Occamy.AA
GDataGen:Variant.Ursu.718218
AhnLab-V3Malware/Win32.RL_Generic.C4197949
ALYacGen:Variant.Ursu.718218
MAXmalware (ai score=82)
MalwarebytesMalware.AI.3269512344
RisingTrojan.Generic/MSIL@AI.100 (RDM.MSIL:KILYWDokYn0c+sarhrU08w)
YandexRiskware.BruteForce!oXPMdUscUGA
FortinetMSIL/BruteForce.MA!tr
AVGWin32:HacktoolX-gen [Trj]
Cybereasonmalicious.c3a219
PandaTrj/GdSda.A
MaxSecureTrojan.Malware.79540976.susgen

How to remove Malware.AI.3269512344?

Malware.AI.3269512344 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment