Malware.AI.3560560232 removal guide

The Malware.AI.3560560232 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.3560560232 virus can do?

CAPE extracted potentially suspicious content
Authenticode signature is invalid

How to determine Malware.AI.3560560232?


File Info:
name: 08F4499F837D95A8A6F9.mlw
path: /opt/CAPEv2/storage/binaries/b10ef51c2656d59934d4cf35fdec4ec52cf4c57cd81e8d2f7d2ff6d2f8048bde
crc32: 063D80A0
md5: 08f4499f837d95a8a6f933ff815b18d2
sha1: 03ea6645e7bfae52b368582f8106a42c0ab39b2b
sha256: b10ef51c2656d59934d4cf35fdec4ec52cf4c57cd81e8d2f7d2ff6d2f8048bde
sha512: 60ed3eb284cb41df00cdefbe56117690135ab5396932826d9b62d51973f3939bed45cc66d87d55d158d5e084bba4a82fa35e5e7483a8fcea2c1d8c6bf6a04a07
ssdeep: 12288:pENnq1+ccUeEzHpo0hKSjqrQLX50RjVcK4x:hLm+9Dx
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1AAB4DA2C56F75837F37296B2CA9C7061B72B6B6F2365DFD842D0C21AC8C1D805DE81A9
sha3_384: d48ff9e5ffc3b98bb721ac48f6fa4e0e832726809fac2ba237d68cf8ecc25ea616c7048dccccdf12a2c42a35e578743c
ep_bytes: ff250020400000000000000000000000
timestamp: 2022-08-27 12:44:52

Version Info:
Translation: 0x0000 0x04b0
Comments: 火绒安全软件托盘程序
CompanyName: 北京火绒网络科技有限公司
FileDescription: HipsTray.exe
FileVersion: 2.5.7.1505
InternalName: HipsTray.exe
LegalCopyright: 北京火绒网络科技有限公司
OriginalFilename: HipsTray.exe
ProductName: 火绒安全软件
ProductVersion: 2.5.7.1505
Assembly Version: 5.2.7.4777

Malware.AI.3560560232 also known as:

Bkav	W32.AIDetectNet.01
Cynet	Malicious (score: 100)
FireEye	Generic.mg.08f4499f837d95a8
McAfee	Artemis!08F4499F837D
K7GW	Trojan ( 00592ee01 )
Cybereason	malicious.5e7bfa
BitDefenderTheta	Gen:NN.ZemsilF.34606.Gm0@aqmZhmh
Elastic	malicious (high confidence)
ESET-NOD32	a variant of MSIL/Kryptik.AFDE
Kaspersky	UDS:Trojan.Win32.GenericML.xnet
BitDefender	Gen:Variant.Lazy.192038
MicroWorld-eScan	Gen:Variant.Lazy.192038
Avast	FileRepMalware [Misc]
Tencent	Trojan.Win32.Coinminer.16000500
Ad-Aware	Gen:Variant.Lazy.192038
F-Secure	Heuristic.HEUR/AGEN.1248318
VIPRE	Gen:Variant.Lazy.192038
McAfee-GW-Edition	Artemis
Trapmine	suspicious.low.ml.score
Emsisoft	Gen:Variant.Lazy.192038 (B)
SentinelOne	Static AI – Malicious PE
GData	Gen:Variant.Lazy.192038
Avira	HEUR/AGEN.1248318
Arcabit	Trojan.Lazy.D2EE26
ZoneAlarm	UDS:Trojan.Win32.GenericML.xnet
Microsoft	Trojan:Win32/Wacatac.B!ml
Google	Detected
Acronis	suspicious
ALYac	Gen:Variant.Lazy.192038
MAX	malware (ai score=82)
Malwarebytes	Malware.AI.3560560232
APEX	Malicious
Ikarus	Trojan.MSIL.Crypt
AVG	FileRepMalware [Misc]
CrowdStrike	win/malicious_confidence_90% (W)

How to remove Malware.AI.3560560232?

Malware.AI.3560560232 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X