Malware.AI.3562842055 removal tips

The Malware.AI.3562842055 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.3562842055 virus can do?

Reads data out of its own binary image
Unconventionial binary language: Chinese (Simplified)
Authenticode signature is invalid
Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine Malware.AI.3562842055?


File Info:
name: E4B65E298AB6992FB165.mlw
path: /opt/CAPEv2/storage/binaries/1f69efdfba1dc6de961ea3ab5cf9e02f5eea2f95760d475d4c513af2bc78777c
crc32: 66DA2383
md5: e4b65e298ab6992fb165b015490aeb04
sha1: c02d7ab04dffffc66a001b0831334cf4792fa1ba
sha256: 1f69efdfba1dc6de961ea3ab5cf9e02f5eea2f95760d475d4c513af2bc78777c
sha512: 99aab8e9d705cf4de323c0528520beaa12967ed34a1d55ffc6b4b34e03c0dbee35a0d13afa88f2bd41c0bbb0148aa9362ead624f6dcdec13d5e1732af84373f0
ssdeep: 3072:8glinKq9AWRPVY0SEmEpxE/t2GzQj2s3+oWHJeLXwULSTHEEpobTR5oHEEpobTRe:XbytLE/t1ns3qSUEEpYTAEEpYT
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1D7848D32AB609276E552073584AA6FA43B7EFE740B3396C76794355D0CB17C0BE31B22
sha3_384: 1ad20c35f1cf3e635dfe79457408409de8d5bcac8cf0d7b70eed522a7682251fe962c5206410ebd1eb57a11448da0347
ep_bytes: 6a006a016a00e8d9ba000085c075086a
timestamp: 2023-04-06 09:15:02

Version Info:
CompanyName: Joyoshare
FileDescription: Joyoshare Activation Unlocker
FileVersion: 1.1.0.8
InternalName: Activation Unlocker.exe
LegalCopyright: Copyright (C) 2023 Joyoshare Studio.
OriginalFilename: Activation Unlocker.exe
ProductName: Joyoshare Activation Unlocker
ProductVersion: 1.1.0
ThinAppBuildDateTime: 20230422 145355
ThinAppLicense: Admin
ThinAppVersion: 2212.0.0-21059475
Translation: 0x0804 0x04b0

Malware.AI.3562842055 also known as:

Bkav	W32.AIDetectMalware
MicroWorld-eScan	Trojan.GenericKD.67267850
FireEye	Generic.mg.e4b65e298ab6992f
ALYac	Trojan.GenericKD.67267850
Malwarebytes	Malware.AI.3562842055
Zillya	Trojan.Agent.Win32.3343822
Sangfor	Trojan.Win32.Agent.Vars
Cyren	W32/S-1d5a7cc5!Eldorado
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (moderate confidence)
Cynet	Malicious (score: 100)
BitDefender	Trojan.GenericKD.67267850
Avast	FileRepMalware [Misc]
Emsisoft	Trojan.GenericKD.67267850 (B)
VIPRE	Trojan.GenericKD.67267850
McAfee-GW-Edition	BehavesLike.Win32.Rootkit.ft
Sophos	Generic ML PUA (PUA)
SentinelOne	Static AI – Suspicious PE
GData	Trojan.GenericKD.67267850
Arcabit	Trojan.Generic.D4026D0A
Google	Detected
McAfee	RDN/Generic PWS.y
MAX	malware (ai score=85)
VBA32	TrojanPSW.Stealer
Cylance	unsafe
TrendMicro-HouseCall	TROJ_GEN.R002H06EU23
Rising	Trojan.Generic@AI.100 (RDML:R6+r1An/EU3nFtv99WDAFQ)
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	W32/PossibleThreat
BitDefenderTheta	Gen:NN.ZexaF.36250.xq0@aipD27ni
AVG	FileRepMalware [Misc]
DeepInstinct	MALICIOUS

How to remove Malware.AI.3562842055?

Malware.AI.3562842055 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X