Malware

Malware.AI.3444572971 information

Malware Removal

The Malware.AI.3444572971 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.3444572971 virus can do?

  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • Unconventionial binary language: Chinese (Simplified)
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • Authenticode signature is invalid

How to determine Malware.AI.3444572971?



File Info:

name: 7B75736DDDB8843E5D6F.mlw
path: /opt/CAPEv2/storage/binaries/162db26e789391958ff561434594b9b9b7228b2e0d2cebfd24593484f04b1f0f
crc32: B4D6A60F
md5: 7b75736dddb8843e5d6f83f83ce0e372
sha1: cfc67d5a3d2cc22259f91d5e112c10146187c590
sha256: 162db26e789391958ff561434594b9b9b7228b2e0d2cebfd24593484f04b1f0f
sha512: 1ad47351832c684191d454b69409f165bfd4d46592fa3208c8e4078623f5300e14454b75ee160f7a0bd6ff679eb8784fedc1122f51c6ee9fec5e321e05c390c3
ssdeep: 24576:nj+zR5AzrZ9h5WIRm5kbMIdOrr8+EY0MmxmPLRWG4zuwfyE70PvBnK+Pxp/L7MXI:+yrZ9tbZOrI+EY6Q4z1yhHPxp/L7MBoD
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T18F75BE42F78180F3D98746B540B7837A9E32A6155729C6D3D7A01E258D323E1AA3F3DE
sha3_384: 81a4d20bd9863e496a2d14242ba780a01db2d5c41119517ef85f79442dd93e55d06fbf51d1d84fd6223950b87c99d809
ep_bytes: e84aed0000e917feffffcc8b4c2404f7
timestamp: 2019-04-11 08:18:14


Version Info:

FileDescription: 智能云输入法用户词库缓存托管程序
FileVersion: 1, 0, 0, 1
InternalName: SCWordSv
LegalCopyright: Copyright (C) 2018
OriginalFilename: SCWordSv.exe
ProductName: 智能云输入法用户词库缓存托管程序
ProductVersion: 1, 0, 0, 1
Translation: 0x0804 0x04b0

Malware.AI.3444572971 also known as:

BkavW32.AIDetect.malware1
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Application.Graftor.712890
FireEyeGeneric.mg.7b75736dddb8843e
ALYacGen:Variant.Application.Graftor.712890
CylanceUnsafe
SangforVirus_Suspicious.Win32.Sality.bh
K7AntiVirusAdware ( 005738ce1 )
K7GWAdware ( 005738ce1 )
Cybereasonmalicious.dddb88
BitDefenderThetaGen:NN.ZexaCO.34084.Kr2@aSsodEeb
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/Softcnapp.BH potentially unwanted
TrendMicro-HouseCallPE_SALITY.ER
Paloaltogeneric.ml
BitDefenderGen:Variant.Application.Graftor.712890
NANO-AntivirusRiskware.Win32.Softcnapp.hjcwha
SUPERAntiSpywarePUP.Softcnapp/Variant
AvastWin32:Sality [Inf]
TencentPua:AdWare.Win32.Burden.16000073
Ad-AwareGen:Variant.Application.Graftor.712890
SophosGeneric PUA MP (PUA)
VIPREVirus.Win32.Sality.atbh (v)
TrendMicroPE_SALITY.ER
McAfee-GW-EditionBehavesLike.Win32.Generic.th
EmsisoftGen:Variant.Application.Graftor.712890 (B)
IkarusPUA.Softcnapp
GDataGen:Variant.Application.Graftor.712890
eGambitUnsafe.AI_Score_85%
MAXmalware (ai score=72)
Antiy-AVLTrojan/Generic.ASMalwS.2B5788D
GridinsoftRansom.Win32.Sabsik.sa
ArcabitTrojan.Application.Graftor.DAE0BA
MicrosoftTrojan:Win32/Sabsik.FL.B!ml
CynetMalicious (score: 100)
Acronissuspicious
VBA32BScope.Adware.Softcnapp
MalwarebytesMalware.AI.3444572971
APEXMalicious
RisingAdware.Agent!1.C6F2 (CLASSIC)
YandexTrojan.GenAsa!YbGeXEuThLo
SentinelOneStatic AI – Malicious PE
MaxSecureAdware.not-a-virus.WIN32.AdWare.Burden.gen_a_192413
FortinetRiskware/Softcnapp
AVGWin32:Sality [Inf]

How to remove Malware.AI.3444572971?

Malware.AI.3444572971 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment