Malware

About “Malware.AI.3573809970” infection

Malware Removal

The Malware.AI.3573809970 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.3573809970 virus can do?

  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • Uses Windows utilities to create a scheduled task
  • Attempts to repeatedly call a single API many times in order to delay analysis time
  • Deletes executed files from disk

How to determine Malware.AI.3573809970?



File Info:

name: 69D302BBD0069F9C7E95.mlw
path: /opt/CAPEv2/storage/binaries/030e764e990532194fc0095c3aa4776c2778c673c4b974ac82a8b9b341794fc1
crc32: 2E2DC1BF
md5: 69d302bbd0069f9c7e954ccef5ea95f3
sha1: cc0e8b62593d1d5eccff68ef61d66dc1c75fd38b
sha256: 030e764e990532194fc0095c3aa4776c2778c673c4b974ac82a8b9b341794fc1
sha512: 062f34fab561a3291ee3584aebecb19bff8c8dfe4298315e415865538f73fe475a451a53c0bf213b6a9567854f1d26a16facaba7b9011c5d67e5757ad4b91b5e
ssdeep: 1536:T7fbN3eEDhDPA/pICdUkbBtW7upvaLU0bI5taxKo0IOlnToIfowgiK3Ob:P7DhdC6kzWypvaQ0FxyNTBfolM
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T162A37E45F3E201F7EAF2053100A6727F9736A3389724A8DBC74C2D529953AD1A63D3E9
sha3_384: 60057b804f7fa2d3414f2ac41e3970cfaf332eb0600c500470b109715a8f4088137141577c819942ebcad2c25eed859f
ep_bytes: 68ac00000068000000006868804100e8
timestamp: 2019-07-30 08:52:45


Version Info:

0: [No Data]

Malware.AI.3573809970 also known as:

BkavW32.AIDetectMalware
LionicTrojan.Win32.Generic.4!c
Elasticmalicious (high confidence)
CynetMalicious (score: 100)
SkyhighBehavesLike.Win32.RealProtect.nh
McAfeeRDN/Generic.grp
Cylanceunsafe
SangforTrojan.Win32.Save.a
Cybereasonmalicious.2593d1
SymantecML.Attribute.HighConfidence
ClamAVWin.Trojan.Generic-10011119-0
SophosGeneric ML PUA (PUA)
WebrootW32.Adware.Gen
GoogleDetected
AhnLab-V3Trojan/Win.Generic.C5022074
BitDefenderThetaGen:NN.ZexaF.36680.guW@ai6!Xxc
MalwarebytesMalware.AI.3573809970
TrendMicro-HouseCallTROJ_GEN.R002H06G423
RisingTrojan.Generic@AI.88 (RDMK:0y+YUlj70YDQUGlOWr1ZCw)
SentinelOneStatic AI – Malicious PE
MaxSecureTrojan.Malware.3411146.susgen
DeepInstinctMALICIOUS
CrowdStrikewin/malicious_confidence_70% (W)

How to remove Malware.AI.3573809970?

Malware.AI.3573809970 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment