What is “Malware.AI.3407635956”?

The Malware.AI.3407635956 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.3407635956 virus can do?

CAPE extracted potentially suspicious content
Authenticode signature is invalid

How to determine Malware.AI.3407635956?


File Info:
name: 4CE696E9DFBC825B3340.mlw
path: /opt/CAPEv2/storage/binaries/66d3772a22c138623797c745b669d0b7c63c8ce195b1c32a1135312c7a030c97
crc32: 5A96FA38
md5: 4ce696e9dfbc825b3340c4b43be9cbe9
sha1: 27db8df11647a7586751a0392419e8cad422c9cd
sha256: 66d3772a22c138623797c745b669d0b7c63c8ce195b1c32a1135312c7a030c97
sha512: 17f02c6e9b14dd02e547452acb825d8659f9ee143a78ae9a269b9259f92f80689b92cf6a11b39a95cfe498e3c36127acadaa3753e09e2b7e84fd76199626f6be
ssdeep: 768:JdQ6ei5jfmcqZiXubeixngJtrVZJU2XjPmpp2PvcKhjP:/Q6eOjDXeze7Py2XjPmpp2PvcKh7
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1BB041B2B2786B54ECC09453FC50AD2E026119D401BF05D6E93B6F9DA6E2CF0B3B9F10A
sha3_384: 07fecd1b7a55dfcc4e0bce38ea83b8019c5a64cb7ca0c2bff2a76d81b8700d96cea90c267d9297d1a89596e599898747
ep_bytes: ff250020001100000000000000000000
timestamp: 2017-05-11 08:50:23

Version Info:
Translation: 0x0000 0x04b0
Comments: 
CompanyName: 
FileDescription: ADealer Updater
FileVersion: 1.4.0
InternalName: Updater.exe
LegalCopyright: 
LegalTrademarks: 
OriginalFilename: Updater.exe
ProductName: 
ProductVersion: 1.4.0
Assembly Version: 1.4.6340.26711

Malware.AI.3407635956 also known as:

Bkav	W32.AIDetectMalware.CS
Lionic	Trojan.Win32.Generic.4!c
Elastic	malicious (moderate confidence)
MicroWorld-eScan	Gen:Variant.Jalapeno.810
FireEye	Gen:Variant.Jalapeno.810
Skyhigh	GenericRXPW-PM!4CE696E9DFBC
McAfee	GenericRXPW-PM!4CE696E9DFBC
Malwarebytes	Malware.AI.3407635956
VIPRE	Gen:Variant.Jalapeno.810
Sangfor	Trojan.Win32.Agent.Vz6c
Alibaba	Trojan:Win32/Generic.3b04df81
Paloalto	generic.ml
Symantec	Trojan.Gen.MBT
TrendMicro-HouseCall	TROJ_GEN.R002C0PAA24
Avast	Win32:Evo-gen [Trj]
Kaspersky	HEUR:Trojan.Win32.Generic
BitDefender	Gen:Variant.Jalapeno.810
Emsisoft	Gen:Variant.Jalapeno.810 (B)
Google	Detected
Zillya	Trojan.GenericKD.Win32.58266
TrendMicro	TROJ_GEN.R002C0PAA24
Trapmine	malicious.moderate.ml.score
Sophos	Mal/Generic-S
Ikarus	Trojan.IL.MSILZilla
Varist	W32/ABRisk.TGAD-2468
MAX	malware (ai score=80)
Antiy-AVL	Trojan/Win32.AGeneric
Microsoft	Trojan:Win32/Wacatac.A!ml
Arcabit	Trojan.Jalapeno.810
ZoneAlarm	HEUR:Trojan.Win32.Generic
GData	Gen:Variant.Jalapeno.810
AhnLab-V3	Trojan/Win.Generic.C5403784
ALYac	Gen:Variant.Jalapeno.810
VBA32	TScope.Trojan.MSIL
Cylance	unsafe
Panda	Trj/GdSda.A
Rising	Trojan.Generic!8.C3 (CLOUD)
Yandex	Trojan.Agent!tdk0VqAgeqk
SentinelOne	Static AI – Suspicious PE
Fortinet	PossibleThreat
AVG	Win32:Evo-gen [Trj]
DeepInstinct	MALICIOUS

How to remove Malware.AI.3407635956?

Malware.AI.3407635956 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X