Malware.AI.3568379020 removal

The Malware.AI.3568379020 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.3568379020 virus can do?

Dynamic (imported) function loading detected
CAPE extracted potentially suspicious content
Authenticode signature is invalid
Anomalous binary characteristics

How to determine Malware.AI.3568379020?


File Info:
name: C254A6B8DC85E44CD200.mlw
path: /opt/CAPEv2/storage/binaries/2ee5e49cc83e9e221b15a05cd937748423de703928177cdf13fe8fd922b7a9f8
crc32: 7BEF15A8
md5: c254a6b8dc85e44cd20091ae8065f3f5
sha1: 79412e626182b43434b6796dcb46ed053ec98e2e
sha256: 2ee5e49cc83e9e221b15a05cd937748423de703928177cdf13fe8fd922b7a9f8
sha512: 5ee17dbcd3abb988ab37dfa31c0b59f538e37a980d7259c656c930ce4a1134f87cb2256b859bc742b6e2319f6f050eae2f4a46f5ae7368688ba12116a9e13dd1
ssdeep: 12288:3aigGGVwDk56bsjcmlQdcD/DD2N4jVENK7Dx+wtIU:3aigGGVws6bpmTbD2+E2k
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T16EE4025176F976A7D2DB8B75D078296067B23767C824FB0B20A40ACE0EAD6435601FB3
sha3_384: 28049d5c51c4a3db11e5370608ce022e7b3af311db8550123d53139e4131e40996b418f6b7376763ce8600b38831eb52
ep_bytes: ff250020400000000000000000000000
timestamp: 2020-02-12 00:45:25

Version Info:
Translation: 0x0000 0x04b0
Comments: Microsoft.VisualStudio.WindowsAzure.WizardFramework.2.9
CompanyName: Microsoft Corporation
FileDescription: Microsoft.VisualStudio.WindowsAzure.WizardFramework.2.9
FileVersion: 2.9.30212.1
InternalName: Microsoft.VisualStudio.WindowsAzure.WizardFramework.2.9.dll
LegalCopyright: Copyright © Microsoft Corporation. All rights reserved.
LegalTrademarks: 
OriginalFilename: Microsoft.VisualStudio.WindowsAzure.WizardFramework.2.9.dll
ProductName: Microsoft Azure Tools for Dev 16
ProductVersion: 2.9.30212.1
Assembly Version: 2.9.0.0

Malware.AI.3568379020 also known as:

Bkav	W32.AIDetectNet.01
Elastic	malicious (moderate confidence)
MicroWorld-eScan	Gen:Variant.Lazy.199350
FireEye	Gen:Variant.Lazy.199350
McAfee	Artemis!C254A6B8DC85
Sangfor	Trojan.MSIL.Crypt.gen
K7GW	Spyware ( 0058f8971 )
Cybereason	malicious.26182b
Cyren	W32/MSIL_Kryptik.GXM.gen!Eldorado
ESET-NOD32	MSIL/Spy.AgentTesla.D
TrendMicro-HouseCall	TROJ_GEN.F0D1C00FI22
Kaspersky	HEUR:Trojan.MSIL.Crypt.gen
BitDefender	Gen:Variant.Lazy.199350
Avast	Win32:Trojan-gen
Tencent	Msil.Trojan.Crypt.Swam
Ad-Aware	Gen:Variant.Lazy.199350
Emsisoft	Gen:Variant.Lazy.199350 (B)
McAfee-GW-Edition	Artemis!Trojan
Sophos	Mal/Generic-S
Jiangmin	Trojan.PSW.MSIL.dddw
Microsoft	Trojan:Win32/Wacatac.B!ml
GData	Gen:Variant.Lazy.199350
Cynet	Malicious (score: 100)
ALYac	Gen:Variant.Lazy.199350
MAX	malware (ai score=83)
Malwarebytes	Malware.AI.3568379020
APEX	Malicious
Ikarus	Win32.SuspectCrc
Fortinet	PossibleThreat
AVG	Win32:Trojan-gen
CrowdStrike	win/malicious_confidence_100% (W)

How to remove Malware.AI.3568379020?

Malware.AI.3568379020 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X