Malware

About “Malware.AI.3540850230” infection

Malware Removal

The Malware.AI.3540850230 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.3540850230 virus can do?

  • Sample contains Overlay data
  • Reads data out of its own binary image
  • Drops a binary and executes it
  • Unconventionial binary language: Chinese (Simplified)
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid

How to determine Malware.AI.3540850230?



File Info:

name: 5C50AB34D20DB2DCF45D.mlw
path: /opt/CAPEv2/storage/binaries/49ac9c68dfb01d493bda5fe0d2241d50c73b9cefe80a6ad4b0988bde2fd0d32a
crc32: 40C83DE7
md5: 5c50ab34d20db2dcf45ded8bf2666b9c
sha1: 92f13fb73e0f06092539f5e9ee340893a9d7180d
sha256: 49ac9c68dfb01d493bda5fe0d2241d50c73b9cefe80a6ad4b0988bde2fd0d32a
sha512: 2aab7a4214efbabcbac8411ddd44aa730746424653dee69f3c9b90ac13fb4a33d9f3f5c28a0724fcad0dfe186778faf827c7d4f54a4c85d6af66bfe6fdf90b0a
ssdeep: 6144:7xO5ki7LKUV56iwdG1Lrjftb0Pcnqdf5VV9Br1mhF/98xsRxrL1ITKXbYhCv:7xO5ki7LvV56iw413jftb0PcnqdHDBrL
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T134845A0576A4C231C1C324345A13AA76A6BAFFD56B35A3C772802F4F8E3D1C5A63974E
sha3_384: 3600d32237a165e5b2c9a9af7a1de140db610c6ac36136636284ef0e4d21340c415e9d16a66974e3d4db41d8c31f39e9
ep_bytes: 6a606868854400e8421a0000bf940000
timestamp: 2010-09-08 17:26:38


Version Info:

FileVersion: 1.0.0.26
ProductVersion: 1.0.0.26
Translation: 0x0804 0x03a8

Malware.AI.3540850230 also known as:

MicroWorld-eScanGen:Variant.OnlineGames.5
FireEyeGeneric.mg.5c50ab34d20db2dc
CAT-QuickHealTrojan.OnLineGames.xi5
McAfeeStartPage-NH
MalwarebytesMalware.AI.3540850230
VIPREGen:Variant.OnlineGames.5
K7AntiVirusTrojan ( 001cac2a1 )
AlibabaMalware:Win32/km_2cff6.None
K7GWTrojan ( 001cac2a1 )
CrowdStrikewin/malicious_confidence_100% (W)
BaiduWin32.Trojan.BHO.n
VirITTrojan.Win32.Agent.AISP
CyrenW32/FakeGame.B.gen!Eldorado
SymantecTrojan Horse
Elasticmalicious (high confidence)
ESET-NOD32Win32/Agent.RQI
APEXMalicious
CynetMalicious (score: 100)
KasperskyTrojan-GameThief.Win32.OnLineGames.akyfq
BitDefenderGen:Variant.OnlineGames.5
NANO-AntivirusTrojan.Win32.TrjGen.bxhvb
SUPERAntiSpywareTrojan.Agent/Gen-BHO
AvastWin32:BHO-ACI [Trj]
RisingBackdoor.Agent!1.69D8 (CLASSIC)
SophosTroj/Darbyen-A
F-SecureTrojan.TR/BHO.efkmnb
DrWebTrojan.Siggen2.23447
ZillyaTrojan.Agent.Win32.122694
TrendMicroTROJ_STARTP.SML2
McAfee-GW-EditionBehavesLike.Win32.StartPage.fh
Trapminesuspicious.low.ml.score
EmsisoftGen:Variant.OnlineGames.5 (B)
IkarusTrojan-Spy.Agent
JiangminTrojan/Generic.bppf
Webroot
AviraTR/BHO.efkmnb
Antiy-AVLTrojan/Win32.Unknown
XcitiumTrojWare.Win32.BHO.EFKMNB@4ok0yf
ArcabitTrojan.OnlineGames.5
ViRobotTrojan.Win.Z.Onlinegames.384094
ZoneAlarmTrojan-GameThief.Win32.OnLineGames.akyfq
GDataWin32.Trojan.PSE.1ICICGF
GoogleDetected
AhnLab-V3Win-Trojan/Onlinegamehack21.Gen
BitDefenderThetaGen:NN.ZexaF.36196.xu1@aW0!rwjb
MAXmalware (ai score=89)
Cylanceunsafe
PandaTrj/Lineage.LOE
ZonerTrojan.Win32.146822
TrendMicro-HouseCallTROJ_STARTP.SML2
TencentTrojan.Win32.OnlineGame.wae
SentinelOneStatic AI – Malicious PE
MaxSecureDownloader.Gamup.qmq
FortinetW32/ZLob.AAAA!tr.dldr
AVGWin32:BHO-ACI [Trj]
Cybereasonmalicious.4d20db
DeepInstinctMALICIOUS

How to remove Malware.AI.3540850230?

Malware.AI.3540850230 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment