Malware

Malware.AI.3569915859 removal instruction

Malware Removal

The Malware.AI.3569915859 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.3569915859 virus can do?

  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • Binary compilation timestomping detected

How to determine Malware.AI.3569915859?



File Info:

name: 8A98861783AF9F12C7A8.mlw
path: /opt/CAPEv2/storage/binaries/c60cb39c90250b165674e218aa5e7cded7bfb3280d24ca5bcd1f51b8e2e8fc28
crc32: 826A3E09
md5: 8a98861783af9f12c7a8ab2458e95194
sha1: bec91087602d77fbf73053f2b977c03f218d1dfd
sha256: c60cb39c90250b165674e218aa5e7cded7bfb3280d24ca5bcd1f51b8e2e8fc28
sha512: 3ac20edabaf7fc2bf53e1156c4b96928e2878927f70ae8b3d24484b1ac96be60d99bd164f2d0ff8c4b99c1440307eac6f948ad2ac7bb936991766e18d27d1f5d
ssdeep: 6144:x03TxS7GR2iEYtaGFyIpVET86qjcfY/AFjmFp0SdMeBvdOnNAuiFJ0gyO/neXxAZ:x03Tx/wGppGTFT6wjcp0Pavd9dJb8X
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T1A1947CC3F25805C0DE78E172DE66BF38A37A0665DF589974AD857B3608F5BC128088F9
sha3_384: b55efc9542f63d60b8d57019e34153ca359676e7105df68400ff6a07c63d8aadbf7ff872b470adf4f1fba32cd3a9c39f
ep_bytes: 5150528d0d18000000648b0101c801c8
timestamp: 2070-02-19 15:55:29


Version Info:

CompanyName: Microsoft Corporation
FileDescription: x86 Performance Counter Host
FileVersion: 10.0.17134.1 (WinBuild.160101.0800)
InternalName: perfhost.exe
LegalCopyright: © Microsoft Corporation. All rights reserved.
OriginalFilename: perfhost.exe
ProductName: Microsoft® Windows® Operating System
ProductVersion: 10.0.17134.1
Translation: 0x0409 0x04b0

Malware.AI.3569915859 also known as:

Elasticmalicious (high confidence)
MicroWorld-eScanWin32.Expiro.Gen.6
FireEyeGeneric.mg.8a98861783af9f12
ALYacWin32.Expiro.Gen.6
CylanceUnsafe
CrowdStrikewin/malicious_confidence_80% (D)
VirITWin32.Expiro.CV
CyrenW32/Expiro.AN.gen!Eldorado
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/Expiro.NDG
APEXMalicious
AvastWin32:Xpirat-C [Inf]
ClamAVWin.Virus.Expiro-9919398-0
KasperskyHEUR:Trojan.Win32.Expiro.gen
BitDefenderWin32.Expiro.Gen.6
NANO-AntivirusVirus.Win32.Gen.ccmw
Ad-AwareWin32.Expiro.Gen.6
SophosML/PE-A + Mal/EncPk-MK
DrWebWin32.Expiro.150
VIPREVirus.Win32.Expiro.dp (v)
TrendMicroVirus.Win32.EXPIRO.AD
EmsisoftWin32.Expiro.Gen.6 (B)
GDataWin32.Expiro.Gen.6
JiangminTrojan.PSW.Stealer.abj
AviraTR/Patched.Gen
Antiy-AVLTrojan/Generic.ASVirus.315
MicrosoftTrojan:Win32/Raccoon.EC!MTB
CynetMalicious (score: 100)
Acronissuspicious
MAXmalware (ai score=82)
VBA32BScope.Trojan.Wacatac
MalwarebytesMalware.AI.3569915859
TrendMicro-HouseCallVirus.Win32.EXPIRO.AD
SentinelOneStatic AI – Malicious PE
FortinetW32/Expiro.NDG
AVGWin32:Xpirat-C [Inf]
Cybereasonmalicious.783af9
PandaTrj/Genetic.gen

How to remove Malware.AI.3569915859?

Malware.AI.3569915859 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment