Malware.AI.3539402545 removal guide

The Malware.AI.3539402545 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.3539402545 virus can do?

Authenticode signature is invalid
Anomalous binary characteristics

How to determine Malware.AI.3539402545?


File Info:
name: 792F649945D7419411C0.mlw
path: /opt/CAPEv2/storage/binaries/cb95ba7f4590254393d945b7b9df0b320d9ad8cd402b532a8b7d4c8c3b0a5c92
crc32: 9059C6E1
md5: 792f649945d7419411c0039f3fcd5a66
sha1: fba05cc0d8492a93e6c6ecdc914916fa4325fd76
sha256: cb95ba7f4590254393d945b7b9df0b320d9ad8cd402b532a8b7d4c8c3b0a5c92
sha512: 2bef4bb2bf4e347a23865c0f787361304a9c0cfa3fd5591d677454d8e2bbc72c370fd302b9479f1cd10bdd90908aba97214b6699b3434cc7f61661b568313914
ssdeep: 768:abKSKqugA0GQhkgdyRbQKN2haRbW22PRQIb60:2KqugA0GQOpQREA22X
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1F8F25C4BEAE1C472C010D5B44E1EC039F73335642B49569BB7AFCDCDDE166A1152CB0A
sha3_384: 8498c0f6591c39bedf3d30feac326a6a8ed8c9305564a5d9e7821b2a79e2ff735a245862a331769a59ecdd09dcf7e1e4
ep_bytes: 3d08864000752c291d08864000011d04
timestamp: 2001-08-17 20:50:29

Version Info:
0: [No Data]

Malware.AI.3539402545 also known as:

Bkav	W32.AIDetect.malware1
Elastic	malicious (high confidence)
MicroWorld-eScan	Gen:Variant.Cerbu.121872
FireEye	Generic.mg.792f649945d74194
McAfee	Exploit-DcomRpc.g.gen
Cylance	Unsafe
K7AntiVirus	Riskware ( 00584baa1 )
Alibaba	Exploit:Win32/ShellCode.084a6134
K7GW	Riskware ( 00584baa1 )
Symantec	ML.Attribute.HighConfidence
TrendMicro-HouseCall	TROJ_GEN.R002H0CKT21
ClamAV	Win.Exploit.Shellcode-1
BitDefender	Gen:Variant.Cerbu.121872
NANO-Antivirus	Trojan.Win32.Inject1.cyptiq
Avast	Win32:DCom-AA [Expl]
Ad-Aware	Gen:Variant.Cerbu.121872
Sophos	Mal/Generic-S
McAfee-GW-Edition	BehavesLike.Win32.Generic.nm
Emsisoft	Gen:Variant.Cerbu.121872 (B)
SentinelOne	Static AI – Suspicious PE
GData	Win32.Trojan.PSE.6LF51U
Avira	EXP/ShellCode.I
MAX	malware (ai score=83)
Antiy-AVL	Worm[Net]/Win32.Kolabc
Gridinsoft	Ransom.Win32.Sabsik.sa
Arcabit	Trojan.Cerbu.D1DC10
Microsoft	Trojan:Win32/Sabsik.FL.B!ml
Cynet	Malicious (score: 100)
ALYac	Gen:Variant.Cerbu.121872
Malwarebytes	Malware.AI.3539402545
APEX	Malicious
Rising	Malware.Heuristic!ET#86% (RDMK:cmRtazpQeaUvtB2F90G20tGNMk5M)
Ikarus	Exploit.ShellCode
Fortinet	W32/PossibleThreat
AVG	Win32:DCom-AA [Expl]
CrowdStrike	win/malicious_confidence_90% (W)

How to remove Malware.AI.3539402545?

Malware.AI.3539402545 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X