Malware

Malware.AI.3436329777 removal

Malware Removal

The Malware.AI.3436329777 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.3436329777 virus can do?

  • Dynamic (imported) function loading detected
  • CAPE extracted potentially suspicious content
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • Network activity detected but not expressed in API logs
  • Binary compilation timestomping detected

Related domains:

wpad.local-net

How to determine Malware.AI.3436329777?



File Info:

name: EB112248CD88E040F7FB.mlw
path: /opt/CAPEv2/storage/binaries/89e94e612d124b50d06eaba05202ff0cdf1fde3c2500ecda95bbcd14001aaa16
crc32: C0DC0AC5
md5: eb112248cd88e040f7fb99b970f29ac0
sha1: 19b325530c0ac1f6b9f9e4dc31225a2b3b5e2d93
sha256: 89e94e612d124b50d06eaba05202ff0cdf1fde3c2500ecda95bbcd14001aaa16
sha512: ddee2bbb7788c80fde176e19f400382d78fed24202e525a0564b3a1a40630c0c8f00a4e96e6693c2c5d347fbab23688504005422ee74037c249de1e3b06baff2
ssdeep: 6144:lo4qw3FuPcZ7vPOaRPWp51ZNDYOj6bXrTR39BieDtFKASKcHmUrkUFIP:NLhJv2aR++Oj6bbRnDtVSKQmUAE
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1EFD49C51221A8525CD2867BCD729F53AE2A53C90267DF63E56E7BC8B7A37F010720933
sha3_384: 6eed650ecef39ded2b027b0d19defea8b246b08f7bd1dbcddafe9b60093a0828b977a5aaf83bd58cb6684eae61d6eb07
ep_bytes: ff250020400000000000000000000000
timestamp: 2038-06-22 10:43:01


Version Info:

Translation: 0x0000 0x04b0
Comments: 
CompanyName: Github.com/iirh
FileDescription: Serendipityx
FileVersion: 1.0.0.0
InternalName: Serendipityx.exe
LegalCopyright: Copyright ©  2020 Github.com/iirh
LegalTrademarks: 
OriginalFilename: Serendipityx.exe
ProductName: Serendipityx
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

Malware.AI.3436329777 also known as:

LionicTrojan.Win32.Random.4!c
MicroWorld-eScanGen:Heur.MSILRandomKrypt.3
FireEyeGen:Heur.MSILRandomKrypt.3
McAfeeGenericRXQA-QD!EB112248CD88
CylanceUnsafe
SangforTrojan.Win32.Sabsik.FL
Cybereasonmalicious.8cd88e
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of MSIL/GameHack.ACX potentially unsafe
APEXMalicious
BitDefenderGen:Heur.MSILRandomKrypt.3
NANO-AntivirusTrojan.Win32.GameHack.jbmrxo
AvastFileRepMalware
Ad-AwareGen:Heur.MSILRandomKrypt.3
SophosGeneric PUA BJ (PUA)
McAfee-GW-EditionGenericRXQA-QD!EB112248CD88
EmsisoftGen:Heur.MSILRandomKrypt.3 (B)
SentinelOneStatic AI – Suspicious PE
GDataGen:Heur.MSILRandomKrypt.3
ArcabitTrojan.MSILRandomKrypt.3
MicrosoftTrojan:Win32/Wacatac.B!ml
CynetMalicious (score: 100)
ALYacGen:Heur.MSILRandomKrypt.3
MAXmalware (ai score=88)
MalwarebytesMalware.AI.3436329777
TrendMicro-HouseCallTROJ_GEN.R002H09IG21
YandexRiskware.Agent!hG+IxWpfRYg
FortinetAdware/GameHack
AVGFileRepMalware
MaxSecureTrojan.Malware.300983.susgen

How to remove Malware.AI.3436329777?

Malware.AI.3436329777 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment