Malware.AI.3476034668 removal tips

The Malware.AI.3476034668 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.3476034668 virus can do?

Unconventionial language used in binary resources: Russian
Authenticode signature is invalid
Anomalous binary characteristics

How to determine Malware.AI.3476034668?


File Info:
name: C6E7575A2A619CAE8D78.mlw
path: /opt/CAPEv2/storage/binaries/d6aca3d17c28c0f52b31350086b60caf27e9b52fa109fddfc75d4f3bd1ef4428
crc32: 179FC563
md5: c6e7575a2a619cae8d7838a4abf3fb20
sha1: bc38a2bc6ea127ac8474da6b6acf841540d4263f
sha256: d6aca3d17c28c0f52b31350086b60caf27e9b52fa109fddfc75d4f3bd1ef4428
sha512: 1e3c39de3a2c64e6edce563261739aeb1e1eb9985639c33b9748fc4850df42cb0be835fe5d3bf678c7e3f81d57de9ac2f40113ad716b4b7c6cfff6ca9a08f61b
ssdeep: 1536:b3oIzeNmT4XOWnJNqXuRd38wTkYv9hibbVvM2OxYsSs/TR0wxJX:TXegyDJNZRdswTzMN4x/TNJX
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T18A938E13DB485283E42E1B70127E5B19E73565383B9B078B52ACBE3DE9C03D3691778A
sha3_384: d8929f328a9be82ff651fbb6765d157c3128a60f1ee69bded9e9048a1de3eb3efa576dc4f1cd732c43d98c6a6dccbe45
ep_bytes: 8bec609ce986b1000033c9898dbcf9ff
timestamp: 2005-06-02 22:21:13

Version Info:
CompanyName: GXulgP1surqQ1J
FileDescription: lMmHjSkf4hR
FileVersion: PdUpdq7djIBDZ
InternalName: 1pX6JowssGe
LegalCopyright: XfeR
OriginalFilename: B6Lx2EgcGJCd
ProductName: Lo6qf
ProductVersion: pmP6VI

Malware.AI.3476034668 also known as:

Bkav	W32.AIDetect.malware1
Lionic	Trojan.Win32.Timer.4!c
Elastic	malicious (high confidence)
MicroWorld-eScan	Gen:Variant.Ransom.8
FireEye	Generic.mg.c6e7575a2a619cae
Cylance	Unsafe
Sangfor	Suspicious.Win32.Save.a
Alibaba	Trojan:Win32/PackBackdoor.4160d1bf
CrowdStrike	win/malicious_confidence_100% (W)
BitDefenderTheta	Gen:NN.ZexaF.34796.fu0@aOcAWfoI
Symantec	ML.Attribute.HighConfidence
TrendMicro-HouseCall	Ransom_Timer.R002C0RKM22
Cynet	Malicious (score: 100)
Kaspersky	UDS:Trojan.Win32.GenericML.xnet
BitDefender	Gen:Variant.Ransom.8
Avast	Win32:MalOb-FE [Cryp]
Ad-Aware	Gen:Variant.Ransom.8
Emsisoft	Gen:Variant.Ransom.8 (B)
F-Secure	Trojan.TR/Crypt.XPACK.Gen
VIPRE	Gen:Variant.Ransom.8
TrendMicro	Ransom_Timer.R002C0RKM22
Trapmine	suspicious.low.ml.score
Sophos	ML/PE-A + Mal/FakeAV-MR
SentinelOne	Static AI – Malicious PE
GData	Gen:Variant.Ransom.8
Jiangmin	Trojan/Yakes.aes
Avira	TR/Crypt.XPACK.Gen
MAX	malware (ai score=80)
Antiy-AVL	Trojan/Win32.AGeneric
Arcabit	Trojan.Ransom.8
ZoneAlarm	UDS:Trojan.Win32.GenericML.xnet
Microsoft	Trojan:Win32/Wacatac.B!ml
Google	Detected
Acronis	suspicious
ALYac	Gen:Variant.Ransom.8
TACHYON	Trojan/W32.Yakes.92160
Malwarebytes	Malware.AI.3476034668
APEX	Malicious
Rising	Trojan.Generic@AI.92 (RDML:QQmm8dqDIYuhFZ9e4Psong)
Ikarus	Trojan-Ransom.Timer
Fortinet	W32/PossibleThreat
AVG	Win32:MalOb-FE [Cryp]
Cybereason	malicious.a2a619
Panda	Generic Suspicious

How to remove Malware.AI.3476034668?

Malware.AI.3476034668 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X