Malware.AI.3537069320 removal instruction

The Malware.AI.3537069320 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.3537069320 virus can do?

The binary likely contains encrypted or compressed data.
Authenticode signature is invalid
Anomalous binary characteristics

How to determine Malware.AI.3537069320?


File Info:
name: B78BEB327767C80765B8.mlw
path: /opt/CAPEv2/storage/binaries/7ebe6ccb9f23c3f76f718c8b12f34ea26c8d53d6022d5bbf3b36bda1a0addd92
crc32: 5938DB1A
md5: b78beb327767c80765b8598b7a1519bf
sha1: 8b138d8c9f832566ba9e6f0188d23c8bbaceeeef
sha256: 7ebe6ccb9f23c3f76f718c8b12f34ea26c8d53d6022d5bbf3b36bda1a0addd92
sha512: b68d503512dd1c4374c058d8e1a822295ed1293a506aa5b5ec2ca418ab0390e25a7f657bb0c8898901df3056c690987510195cb7dca087ea0ad10371aadaaade
ssdeep: 12288:FXDdKfpf4u+U+UzDKcW6eX48/X0snrd1YLkBK:RD6pQU+B/X0cZ1Wh
type: PE32+ executable (console) x86-64, for MS Windows
tlsh: T1B794CF7045E434CDE46E5E7CBF966A6188D1E6B71303B4975CABF8073AEC22D5212E83
sha3_384: 21b5f9af324dde4b8a98cd12c544a6e099a7e3d77c0e76b18c196845de46bb7348913105834d1745ccc1de6e04c7131e
ep_bytes: 475150455243b96000000065498b0145
timestamp: 2009-03-25 21:02:06

Version Info:
CompanyName: Microsoft Corporation
FileDescription: SNMP Trap
FileVersion: 10.0.17134.1 (WinBuild.160101.0800)
InternalName: snmptrap.exe
LegalCopyright: © Microsoft Corporation. All rights reserved.
OriginalFilename: snmptrap.exe
ProductName: Microsoft® Windows® Operating System
ProductVersion: 10.0.17134.1
Translation: 0x0409 0x04b0

Malware.AI.3537069320 also known as:

Elastic	malicious (high confidence)
MicroWorld-eScan	Win64.Expiro.Gen.6
FireEye	Generic.mg.b78beb327767c807
ALYac	Win64.Expiro.Gen.6
Cylance	Unsafe
K7AntiVirus	Virus ( 00535e4a1 )
K7GW	Virus ( 00535e4a1 )
Cybereason	malicious.c9f832
Cyren	W64/Expiro.AH.gen!Eldorado
ESET-NOD32	a variant of Win64/Expiro.CO
TrendMicro-HouseCall	Virus.Win64.EXPIRO.MR
ClamAV	Win.Virus.Ulise-9900235-0
Kaspersky	HEUR:Virus.Win64.Expiro.gen
BitDefender	Win64.Expiro.Gen.6
NANO-Antivirus	Virus.Win64.Expiro.clnvwd
Avast	Win64:Xpirat [Inf]
Ad-Aware	Win64.Expiro.Gen.6
Emsisoft	Win64.Expiro.Gen.6 (B)
F-Secure	Malware.W32/Infector.Gen8
DrWeb	Win64.Expiro.132
TrendMicro	Virus.Win64.EXPIRO.MR
SentinelOne	Static AI – Malicious PE
Sophos	ML/PE-A + W64/Expiro-AX
APEX	Malicious
GData	Win64.Expiro.Gen.6
Jiangmin	Trojan.Bingoml.akq
Avira	W32/Infector.Gen8
Antiy-AVL	Virus/Win64.Expiro.bs
Arcabit	Win64.Expiro.Gen.6
Microsoft	Trojan:Win32/Sabsik.FL.B!ml
Cynet	Malicious (score: 100)
Acronis	suspicious
MAX	malware (ai score=81)
Malwarebytes	Malware.AI.3537069320
Ikarus	Virus.Win64.Expiro
Fortinet	W64/Expiro.BS
AVG	Win64:Xpirat [Inf]
CrowdStrike	win/malicious_confidence_100% (D)
MaxSecure	virus.win64.expiro.gen

How to remove Malware.AI.3537069320?

Malware.AI.3537069320 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X