Malware

How to remove “Malware.AI.3565701378”?

Malware Removal

The Malware.AI.3565701378 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.3565701378 virus can do?

  • Sample contains Overlay data
  • Performs HTTP requests potentially not found in PCAP.
  • Reads data out of its own binary image
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid
  • Attempts to modify proxy settings
  • Touches a file containing cookies, possibly for information gathering
  • Anomalous binary characteristics

How to determine Malware.AI.3565701378?



File Info:

name: 4B4682A6EB9D300CFE6E.mlw
path: /opt/CAPEv2/storage/binaries/d6ae125f9f30ce82383328f2d1043319b29760f2a93f73ef8fa0b8fa203c6f2e
crc32: 258C8CBA
md5: 4b4682a6eb9d300cfe6e2d85ed3ed58c
sha1: 24abe200c806ee1611539fb70b1c212f41c96468
sha256: d6ae125f9f30ce82383328f2d1043319b29760f2a93f73ef8fa0b8fa203c6f2e
sha512: 91b7a2bdf419b7d8d770992a1a3be4f1cea1b4ea7d94495954437c5a8706175fa1a074e6b4b0a2eca40edcae15d1e00b50f4e943a2e12f50b3757033c4fe8ebe
ssdeep: 24576:1WDE9VyOgdD6GqZljh2clorRYyyWoWmQquIej8gdofKw78W++nD6yGRTlDTFP09k:ID0UOY6l3ald1w78W++nmZTpTFP5OCP
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1F5859E32B191C437D0732A399C1BD6D9A53DBE116E3C684B3AE52F4C1F39A8239192D7
sha3_384: 02aafee5391c73fe75866ac225702d0bdfb74f49976ac5b1ee3c68451efde86fb2d40b864ea5f9e491f88b98cecbc4b7
ep_bytes: 558becb9080000006a006a004975f951
timestamp: 2009-06-20 16:39:33


Version Info:

CompanyName: http://www.rohan.in.th
FileDescription: Patcher
FileVersion: 1.0.0.0
InternalName: Codename Grid
LegalCopyright: AED
LegalTrademarks: 
OriginalFilename: Thor.exe
ProductName: Aeomin DLIB Core V4 Series
ProductVersion: 4.0.0
SpecialBuild: Aeomin DLIB Core V3
Translation: 0x0409 0x04e4

Malware.AI.3565701378 also known as:

BkavW32.Common.42C73A6D
LionicTrojan.Win32.Game.4!c
AVGWin32:Malware-gen
MicroWorld-eScanTrojan.Generic.33847570
McAfeeArtemis!4B4682A6EB9D
MalwarebytesMalware.AI.3565701378
ZillyaTrojan.GameTool.Win32.3457
SangforTrojan.Win32.Gametool.V3rf
K7AntiVirusUnwanted-Program ( 00581dbc1 )
K7GWUnwanted-Program ( 00581dbc1 )
CrowdStrikewin/grayware_confidence_60% (D)
ArcabitTrojan.Generic.D2047912
ESET-NOD32a variant of Win32/GameTool.HP potentially unsafe
APEXMalicious
BitDefenderTrojan.Generic.33847570
AvastWin32:Malware-gen
EmsisoftTrojan.Generic.33847570 (B)
VIPRETrojan.Generic.33847570
McAfee-GW-EditionBehavesLike.Win32.BadFile.th
FireEyeTrojan.Generic.33847570
MAXmalware (ai score=81)
Antiy-AVLRiskWare/Win32.GameTool
GDataTrojan.Generic.33847570
GoogleDetected
ALYacTrojan.Generic.33847570
VBA32TScope.Trojan.Delf
Cylanceunsafe
PandaTrj/Chgt.AD
TrendMicro-HouseCallTROJ_GEN.R002H09F223
IkarusBackdoor.Win32.Yobdam
MaxSecureTrojan.Malware.300983.susgen
FortinetRiskware/GameTool
DeepInstinctMALICIOUS

How to remove Malware.AI.3565701378?

Malware.AI.3565701378 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment