About “Malware.AI.3487009049” infection

The Malware.AI.3487009049 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.3487009049 virus can do?

Behavioural detection: Executable code extraction – unpacking
Unconventionial binary language: Chinese (Simplified)
Unconventionial language used in binary resources: Chinese (Simplified)
Authenticode signature is invalid

How to determine Malware.AI.3487009049?


File Info:
name: 82E04B49607BE4335D75.mlw
path: /opt/CAPEv2/storage/binaries/7d20ef5ebd6956e9dc5b0d0bb08f0499c60e8eb47f31ce2054ba2b76b21a9b78
crc32: 3AD8062E
md5: 82e04b49607be4335d7548ebb8c1d1b7
sha1: c2bf6cae53f2283124ea4dcea2ddfeb5fa1bc097
sha256: 7d20ef5ebd6956e9dc5b0d0bb08f0499c60e8eb47f31ce2054ba2b76b21a9b78
sha512: a00cad6f960460f440acd765eac8e5da01eac2b6f94485ce05ecbc93720ed1a45d74d733e4df94e557ccad544d38aa03cedad9b33e7374586a55b03df2a5cc51
ssdeep: 192:FsJrkT/4slKiATeMVl3c6/B3kB+SE62cgs/I2/5ys34:FsGMsgne0l3c5R2cd/I2IsI
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T132A3FA337D98D196E41B4976CE12C5ED44123E10DC16998BBAC8FF9F2D3A50329A473B
sha3_384: 52745e5d5845196d9d311f9113317d8db99e24839dab2da32e72b5f3a1b9f98500f00bc907e67f9f3b54d8042677f788
ep_bytes: 6880314100e8f0ffffff000000000000
timestamp: 2010-12-17 03:05:46

Version Info:
Translation: 0x0804 0x04b0
CompanyName: WY&DXG
ProductName: DME-STDZ
FileVersion: 1.00
ProductVersion: 1.00
InternalName: DME-STDZ
OriginalFilename: DME-STDZ.exe

Malware.AI.3487009049 also known as:

Bkav	W32.AIDetectMalware
Lionic	Trojan.Win32.Meredrop.4!c
AVG	Win32:Malware-gen
Skyhigh	BehavesLike.Win32.Infected.cz
McAfee	GenericRXAA-FA!82E04B49607B
Malwarebytes	Malware.AI.3487009049
Zillya	Worm.Agent.Win32.6581
Sangfor	Trojan.Win32.Meredrop.Vpc3
Alibaba	Trojan:Win32/Meredrop.39445a8d
Symantec	ML.Attribute.HighConfidence
Cynet	Malicious (score: 99)
APEX	Malicious
ClamAV	Win.Malware.Razy-7640050-0
NANO-Antivirus	Trojan.Win32.Meredrop.ebbirr
Avast	Win32:Malware-gen
Rising	Trojan.Meredrop!8.6CD (TFE:3:AEsFh2OdcN)
Sophos	Mal/Generic-S
F-Secure	Trojan.TR/Agent.102400.652
TrendMicro	TROJ_GEN.R002C0DL423
Trapmine	malicious.high.ml.score
Webroot	W32.Trojan.Meredrop
Varist	W32/S-aff0c4f6!Eldorado
Avira	TR/Agent.102400.652
Antiy-AVL	Trojan/Win32.TSGeneric
Kingsoft	Win32.Troj.Undef.a
Microsoft	Trojan:Win32/Meredrop
Google	Detected
TACHYON	Trojan/W32.VB-Agent.102400.JN
VBA32	Trojan.Meredrop
Cylance	unsafe
Panda	Trj/CI.A
TrendMicro-HouseCall	TROJ_GEN.R002C0DL423
Tencent	Malware.Win32.Gencirc.10b14a5d
Yandex	Trojan.DR.Agent!yM3W4mwe/Jo
Ikarus	Trojan.Dropper
MaxSecure	Trojan.Malware.300983.susgen
DeepInstinct	MALICIOUS
alibabacloud	Trojan:Win/Meredrop

How to remove Malware.AI.3487009049?

Malware.AI.3487009049 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X