What is “Malware.AI.3472029512”?

The Malware.AI.3472029512 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.3472029512 virus can do?

Creates RWX memory
Dynamic (imported) function loading detected
Reads data out of its own binary image
Authenticode signature is invalid
Network activity detected but not expressed in API logs

How to determine Malware.AI.3472029512?


File Info:
name: 25F033DFCDD239C942B3.mlw
path: /opt/CAPEv2/storage/binaries/6fdc8d8f1e6f65bc709ebfbdbdaf578f32e89664554058343c8fd914a0b109b3
crc32: 17C0F386
md5: 25f033dfcdd239c942b3b96780178427
sha1: e9a402d6e5d85e2226fd33bfdf148332023317e1
sha256: 6fdc8d8f1e6f65bc709ebfbdbdaf578f32e89664554058343c8fd914a0b109b3
sha512: ded86b59292a64ecf716cb1b835585bf4c405c7983e99c26e8027995f2eb2f46ba06bcce382f8230c971d95edf7e83787dc3056c219ad92530f2b5e68ac44d50
ssdeep: 3072:vvo8eRcfjDaXJNJkmOLCndYVtmP3szSW2l57t:vauq7JkmOqstwpl57t
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1CCC3E06295FA84BFC55209F1623FDAB6A3BBCEB085524A073FD83E3B9D3114345CA146
sha3_384: 7184eead51d307a4b3833e80703eac0c509a0b9a49f4e929173f91538937e444a38caaa84b3e2e1fec3736c304e20fa2
ep_bytes: 81ec8401000053555633db57895c2418
timestamp: 2013-07-14 20:09:51

Version Info:
0: [No Data]

Malware.AI.3472029512 also known as:

Lionic	Trojan.Win32.Convagent.m!c
MicroWorld-eScan	Trojan.GenericKD.47453752
FireEye	Trojan.GenericKD.47453752
McAfee	Artemis!25F033DFCDD2
Malwarebytes	Malware.AI.3472029512
K7AntiVirus	JokeProgram ( 004b33131 )
K7GW	JokeProgram ( 004b33131 )
ESET-NOD32	NSIS/Hoax.ArchSMS.U
TrendMicro-HouseCall	TROJ_GEN.R03FH09KN21
Paloalto	generic.ml
Kaspersky	VHO:Backdoor.Win32.Convagent.gen
BitDefender	Trojan.GenericKD.47453752
Avast	FileRepMalware
Ad-Aware	Trojan.GenericKD.47453752
Emsisoft	Trojan.GenericKD.47453752 (B)
McAfee-GW-Edition	BehavesLike.Win32.BadFile.cc
Sophos	Mal/Generic-S
MAX	malware (ai score=89)
Gridinsoft	Ransom.Win32.Wacatac.sa
Microsoft	Trojan:Win32/Wacatac.B!ml
GData	Trojan.GenericKD.47453752
VBA32	suspected of Trojan.Downloader.gen
ALYac	Trojan.GenericKD.47453752
APEX	Malicious
SentinelOne	Static AI – Malicious PE
AVG	FileRepMalware

How to remove Malware.AI.3472029512?

Malware.AI.3472029512 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X