Malware

Malware.AI.3518616274 removal tips

Malware Removal

The Malware.AI.3518616274 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.3518616274 virus can do?

  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • Dynamic (imported) function loading detected
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • Anomalous file deletion behavior detected (10+)
  • Reads data out of its own binary image
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid
  • Created a process from a suspicious location
  • CAPE detected the PyInstaller malware family
  • Anomalous binary characteristics

How to determine Malware.AI.3518616274?



File Info:

name: 39783C4AA1610FD8D12F.mlw
path: /opt/CAPEv2/storage/binaries/18ed6d3daf60ebebfec8cdda0063e9dc11e7114128a62137d09f199db14797a2
crc32: 287D91DE
md5: 39783c4aa1610fd8d12fa05605e60ebc
sha1: 11e4e6f7c901df061cb0263fc7f02404945ffbd4
sha256: 18ed6d3daf60ebebfec8cdda0063e9dc11e7114128a62137d09f199db14797a2
sha512: e09e67f647d67e915da5407575ff1cc074da7ccceba89ceaef13533667154a8711c5ab0c6b8624aea051b59a095ae102db61b91a98fa4b7278c19156f34da10f
ssdeep: 196608:JNxx7OFHC8ICteEroXxWVfEqlbkkwR7VTE548RmU/3ZlsPvuZFVTvN8CPzIorI+F:Hmi8InEroXgfEqirRRo5tN3ZWuZbTRzX
type: PE32+ executable (console) x86-64, for MS Windows
tlsh: T1B6A6330AF7900CECF1531236B8D08836D57A78364358F9571EAC78631BEB6E8BE76650
sha3_384: 96a6e081a3466a6ad9bab6f371341313467959f21d2c1a5431a12ca0b51b2136e8b1487a9cddbbe7899626a2ab7f0da1
ep_bytes: 4883ec28e8f70400004883c428e972fe
timestamp: 2021-11-09 18:03:59


Version Info:

0: [No Data]

Malware.AI.3518616274 also known as:

LionicTrojan.Win32.Tedy.4!c
MicroWorld-eScanGen:Variant.Tedy.6638
FireEyeGen:Variant.Tedy.6638
McAfeeArtemis!39783C4AA161
ZillyaTrojan.Agent.Script.1642598
TrendMicro-HouseCallTROJ_GEN.R002H09L521
BitDefenderGen:Variant.Tedy.6638
Ad-AwareGen:Variant.Tedy.6638
EmsisoftGen:Variant.Tedy.6638 (B)
McAfee-GW-EditionBehavesLike.Win64.Ransom.tc
GDataGen:Variant.Tedy.6638
JiangminTrojan.Agentb.kqi
MAXmalware (ai score=85)
Antiy-AVLTrojan/Generic.ASMalwS.34CE845
CynetMalicious (score: 100)
MalwarebytesMalware.AI.3518616274
FortinetW32/PossibleThreat

How to remove Malware.AI.3518616274?

Malware.AI.3518616274 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment