Malware

How to remove “Malware.AI.3346315863”?

Malware Removal

The Malware.AI.3346315863 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.3346315863 virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Reads data out of its own binary image
  • CAPE extracted potentially suspicious content
  • Drops a binary and executes it
  • Authenticode signature is invalid
  • Behavioural detection: Injection (inter-process)
  • Attempts to disable Windows Auto Updates
  • Anomalous binary characteristics
  • Attempts to modify Explorer settings to prevent hidden files from being displayed
  • Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine Malware.AI.3346315863?



File Info:

name: 75137EB9E50023782442.mlw
path: /opt/CAPEv2/storage/binaries/c1668209e6bdd7a667442d952731600ababd08ad1a37dd9420c03018b7324922
crc32: 71332BC0
md5: 75137eb9e500237824422e19118b9461
sha1: 74b187c903512f627ffc3040c9272428b64022b9
sha256: c1668209e6bdd7a667442d952731600ababd08ad1a37dd9420c03018b7324922
sha512: 6f40b86d41d0d1e2042b56feee53e5e064bcabcd1b3e4ee4056614c2f8f5ba41d505920fcf35d7a48ab38d016f6676d25aa27941a7565a760a272adbf9af10b7
ssdeep: 6144:yMtQ4Psq8gFV91GGGLVTmrshXj0MQH1DUhu1GJu+DODryKnKxO:55UgFV6Hm1JKxO
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T129643016AD10A03BE64698F1291983AA291D1E776380FC0BF385BB9870751E7F6F171F
sha3_384: 8c6a13af9eaa521089a435a80dd7b4d4fb310c407d9b022de333383ca75459cf61ef1aaaa496118b6f43961c0e4a2311
ep_bytes: 68dc4b4000e8f0ffffff000048000000
timestamp: 2012-03-29 20:56:00


Version Info:

ProductName: 87
FileVersion: 67.00
ProductVersion: 188.00
InternalName: 445
OriginalFilename: 98
Translation: 0x0409 0x04b0

Malware.AI.3346315863 also known as:

BkavW32.AIDetectMalware
LionicWorm.Win32.WBNA.lw12
tehtrisGeneric.Malware
MicroWorld-eScanGen:Variant.Barys.950
ClamAVWin.Trojan.Vobfus-8
FireEyeGeneric.mg.75137eb9e5002378
CAT-QuickHealTrojan.Beebone.D
McAfeeVBObfus.dv
Cylanceunsafe
ZillyaWorm.Vobfus.Win32.1120573
SangforSuspicious.Win32.Save.vb
K7AntiVirusEmailWorm ( 0054d10f1 )
AlibabaWorm:Win32/vobfus.5ae7
K7GWEmailWorm ( 0054d10f1 )
Cybereasonmalicious.9e5002
BitDefenderThetaGen:NN.ZevbaF.36196.tm0@aauLgrgi
VirITTrojan.Win32.SHeur4.WOC
CyrenW32/Vobfus.BE.gen!Eldorado
SymantecW32.Changeup
Elasticmalicious (high confidence)
ESET-NOD32a variant of Win32/AutoRun.VB.AUA
APEXMalicious
CynetMalicious (score: 100)
KasperskyWorm.Win32.Vobfus.dffg
BitDefenderGen:Variant.Barys.950
NANO-AntivirusTrojan.Win32.VB.rilrg
SUPERAntiSpywareTrojan.Agent/Gen-Vobfus
AvastWin32:VB-ACAJ [Trj]
TencentWorm.Win32.Vobfus.n
TACHYONTrojan/W32.VB-Agent.323584.AA
EmsisoftGen:Variant.Barys.950 (B)
BaiduWin32.Trojan.VBObfus.f
F-SecureTrojan.TR/Otran.A.7622
DrWebTrojan.VbCrypt.60
VIPREGen:Variant.Barys.950
TrendMicroWORM_VOBFUS.SMJA
McAfee-GW-EditionBehavesLike.Win32.VBObfus.fm
Trapminemalicious.moderate.ml.score
SophosMal/SillyFDC-W
GDataWin32.Trojan.VB.ABW
JiangminTrojan/Vbobf.b
AviraTR/Otran.A.7622
Antiy-AVLWorm/Win32.WBNA.gen
XcitiumTrojWare.Win32.VB.AVA@4paxk7
ArcabitTrojan.Barys.950
ViRobotTrojan.Win32.A.VB.323584.C
ZoneAlarmWorm.Win32.Vobfus.dffg
MicrosoftWorm:Win32/Vobfus.gen!X
GoogleDetected
AhnLab-V3HEUR/Fakon.mwf.X1381
VBA32TScope.Trojan.VB
ALYacGen:Variant.Barys.950
MAXmalware (ai score=89)
MalwarebytesMalware.AI.3346315863
PandaTrj/Genetic.gen
TrendMicro-HouseCallWORM_VOBFUS.SMJA
RisingTrojan.VBEx!1.99EE (CLASSIC)
IkarusWorm.Win32.Vobfus
MaxSecureTrojan.Malware.11621858.susgen
FortinetW32/VBKrypt.C!tr
AVGWin32:VB-ACAJ [Trj]
DeepInstinctMALICIOUS
CrowdStrikewin/malicious_confidence_100% (W)

How to remove Malware.AI.3346315863?

Malware.AI.3346315863 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment