Malware

Malware.AI.350789505 removal guide

Malware Removal

The Malware.AI.350789505 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.350789505 virus can do?

  • At least one process apparently crashed during execution
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX
  • Authenticode signature is invalid

How to determine Malware.AI.350789505?



File Info:

name: A0CE34C19BF8705B5DF4.mlw
path: /opt/CAPEv2/storage/binaries/9235cee4c6f100d576c85cd5674402de003d6d72b017a7ccfd4def34ca674145
crc32: 26556653
md5: a0ce34c19bf8705b5df47e5e19280ca6
sha1: 54afc328f710a0755f0a506d3c556a6c79f968cc
sha256: 9235cee4c6f100d576c85cd5674402de003d6d72b017a7ccfd4def34ca674145
sha512: 247f381b49e9675045afb11371f80335bd6aab58d6c0924c8ba4534f0c2c81ec57c163112c089e1b72c5c5d4e657031e760e08ed49f55b6e05101fddfa23e8ca
ssdeep: 12288:XYV6MorX7qzuC3QHO9FQVHPF51jgc5ouT4WXa5FRGV5kgW5CBg52+0M7nePDc:kBXu9HGaVHuc4WK5FRUO75CBg5E+eLc
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1A2F42356AFF2035BC5DC06F3DA7FA6149409CEC2C8D83BDA54E1B951EE77BA458020B2
sha3_384: 5a26d5ed8ea27c24dbd5fcd6a1f83ef1d19fe224bbdd5511a5ed60285499908b7abd1b96e2ac19c522246bca5c78c4f8
ep_bytes: 60be00d04e008dbe0040f1ff57eb0b90
timestamp: 2019-12-01 12:49:56


Version Info:

FileVersion: 4.2.0.0
Comments: cFosSpeed Trial Reset Setup by BBs and Anuraag
FileDescription: cFosSpeed Trial Reset Setup by BBs and Anuraag
ProductVersion: 4.2.0.0
LegalCopyright: ©1999-2018 Jonathan Bennett & AutoIt Team
CompanyName: BB
InternalName: CFS.TR.Setup.BBs.exe
OriginalFilename: CFS.TR.Setup.BBs.exe
ProductName: cFosSpeed Trial Reset Setup
Translation: 0x0409 0x04b0

Malware.AI.350789505 also known as:

BkavW32.AIDetect.malware1
LionicTrojan.Win32.Generic.4!c
CAT-QuickHealTrojan.Scar
McAfeeRDN/Generic PUP.z
MalwarebytesMalware.AI.350789505
ZillyaTool.Crack.Win32.2823
K7AntiVirusUnwanted-Program ( 004e27001 )
K7GWUnwanted-Program ( 004e27001 )
CyrenW32/Trojan.JNPD-8242
ESET-NOD32a variant of Win32/HackTool.Crack.EG potentially unsafe
APEXMalicious
ClamAVWin.Malware.Autoit-6867844-0
VIPRETrojan.Win32.Generic!BT
McAfee-GW-EditionBehavesLike.Win32.TrojanAitInject.bc
FireEyeGeneric.mg.a0ce34c19bf8705b
SophosGeneric ML PUA (PUA)
MicrosoftRansom:Win32/StopCrypt!ml
CylanceUnsafe
FortinetRiskware/Crack
AVGWin32:Malware-gen
AvastWin32:Malware-gen
MaxSecureTrojan.Malware.300983.susgen

How to remove Malware.AI.350789505?

Malware.AI.350789505 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment