Malware

About “Malware.AI.3578490726” infection

Malware Removal

The Malware.AI.3578490726 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.3578490726 virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • Creates RWX memory
  • CAPE extracted potentially suspicious content
  • The binary likely contains encrypted or compressed data.
  • Creates an autorun.inf file
  • Authenticode signature is invalid
  • Installs itself for autorun at Windows startup
  • Anomalous binary characteristics

How to determine Malware.AI.3578490726?



File Info:

name: D406D5D9E60314F28679.mlw
path: /opt/CAPEv2/storage/binaries/7955cb8da167de486052ba50ceb5090e72ec1db2637432370b9b5e05f86a50a9
crc32: C8C06373
md5: d406d5d9e60314f28679f0770c7ed3f1
sha1: a120aba15eee27b230f30937baafb3b438261442
sha256: 7955cb8da167de486052ba50ceb5090e72ec1db2637432370b9b5e05f86a50a9
sha512: 39c975edb1e6973ecd6674ab121d9a6ddecd36673784a4c289699488351852b736d9e143016b9dd4980680e5167aea5bee3c0fe2a3c59b22a01a9074c35b2a02
ssdeep: 3072:9LCpRcNJGOVGo4a6VCHXpv41VNL0PUDBdxf/z9E0xU9pu9hkj2:9LqRc/GOBt643pg1DdR9E0xU9pf2
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1FE049DA28167B4CCF706027D7C04C3169C969D66E2D557C078B12F8D83E652F8AABF4E
sha3_384: 6c024ce1f04996afd1ebc066e15689ad8048965c1fe9ebc822f98f3755a8436db89a54ead4ff48c2273c911a08152621
ep_bytes: 6a40680010000068a08601006a00ff15
timestamp: 2012-09-05 20:26:28


Version Info:

0: [No Data]

Malware.AI.3578490726 also known as:

BkavW32.AIDetect.malware1
LionicWorm.Win32.AutoRun.o!c
Elasticmalicious (high confidence)
CynetMalicious (score: 100)
FireEyeGeneric.mg.d406d5d9e60314f2
ALYacGen:Variant.Downloader.126
CylanceUnsafe
SangforSuspicious.Win32.Save.a
CrowdStrikewin/malicious_confidence_100% (W)
AlibabaWorm:Win32/AutoRun.7c0c845f
K7GWEmailWorm ( 0052ca6a1 )
K7AntiVirusEmailWorm ( 0052ca6a1 )
CyrenW32/Kryptik.AJG.gen!Eldorado
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/AutoRun.Agent.AFG
APEXMalicious
Paloaltogeneric.ml
KasperskyHEUR:Worm.Win32.AutoRun.pef
BitDefenderGen:Variant.Downloader.126
MicroWorld-eScanGen:Variant.Downloader.126
AvastFileRepMalware
TencentWin32.Worm.Autorun.Wnvq
Ad-AwareGen:Variant.Downloader.126
EmsisoftGen:Variant.Downloader.126 (B)
ComodoEmailWorm.Win32.AutoRun.KA@719dtc
DrWebWin32.HLLW.Autoruner3.499
TrendMicroTROJ_GEN.R002C0PL321
McAfee-GW-EditionBehavesLike.Win32.Generic.cc
SophosMal/Generic-R + Troj/Agent-BCGS
IkarusVirus.Win32.Heur
GDataGen:Variant.Downloader.126
JiangminTrojan.Generic.fzpaw
AviraTR/Crypt.XPACK.Gen
Antiy-AVLTrojan/Generic.ASBOL.C6BE
MicrosoftTrojan:Win32/Sabsik.FL.B!ml
AhnLab-V3Malware/Win32.RL_Generic.R295338
Acronissuspicious
McAfeeGenericRXLS-WE!D406D5D9E603
MAXmalware (ai score=85)
VBA32BScope.Worm.Autorun
MalwarebytesMalware.AI.3578490726
TrendMicro-HouseCallTROJ_GEN.R002C0PL321
RisingWorm.Autorun!1.AFBF (CLASSIC)
YandexTrojan.GenAsa!6D0EeHKQIts
SentinelOneStatic AI – Malicious PE
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/Agent.AFG!tr
BitDefenderThetaAI:Packer.10D9AA541E
AVGFileRepMalware
Cybereasonmalicious.9e6031
PandaTrj/Genetic.gen

How to remove Malware.AI.3578490726?

Malware.AI.3578490726 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment