Malware.AI.3629027772 removal

The Malware.AI.3629027772 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.3629027772 virus can do?

Unconventionial language used in binary resources: Russian
The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid

How to determine Malware.AI.3629027772?


File Info:
name: 1EC2EEC55BBFB4A5769A.mlw
path: /opt/CAPEv2/storage/binaries/5407dd5167c08b52fd55092eeafe809c4b70ceef4dac172930615fa84011ce48
crc32: 0B885E34
md5: 1ec2eec55bbfb4a5769afe5454d3f907
sha1: 1e4aafc6f763cf19a2beb144d2c799cfe03e91ee
sha256: 5407dd5167c08b52fd55092eeafe809c4b70ceef4dac172930615fa84011ce48
sha512: 41608e5d5eedcc1b10bafe1486f2581d7c613088035a478c005aed87a98a555ec486d3996c0c74b904f8b042a7b6f31fc227cc45a300004dd5daea79aa7423d8
ssdeep: 768:uWU8nlumpuE7r97LcRRGBViF6YOVyguVECBlezo/:utmlPZ97YRRGzHVygutbeQ
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T17824830267F95615F1FA6B345FBA06E64E7DBC417939CE2E2250BA4F2C71A80C865333
sha3_384: d087aab95bad2d3f42c0a1ffc4f508ec98a370089c6281b57c47117c091d2f3a88a62396ab13e3e74e66faca8f65d681
ep_bytes: 60be003067018dbe00e0d8fe5783cdff
timestamp: 1992-06-19 22:22:17

Version Info:
0: [No Data]

Malware.AI.3629027772 also known as:

FireEye	Generic.mg.1ec2eec55bbfb4a5
Cylance	Unsafe
Sangfor	Suspicious.Win32.Save.a
K7AntiVirus	Trojan ( 00550a831 )
K7GW	Trojan ( 00550a831 )
Cybereason	malicious.6f763c
BitDefenderTheta	Gen:NN.ZexaF.34606.nmW@aauNUHoc
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (high confidence)
APEX	Malicious
ClamAV	Win.Malware.Generic-9956637-0
Avast	Win32:Evo-gen [Trj]
Comodo	Packed.Win32.MUPX.Gen@24tbus
F-Secure	Malware.W32/Poker.A
McAfee-GW-Edition	Artemis!Trojan
Trapmine	malicious.moderate.ml.score
Sophos	Generic ML PUA (PUA)
Ikarus	Trojan.SuspectCRC
GData	Win32.Trojan.Agent.BX683C
Webroot	W32.Trojan.Gen
Google	Detected
Avira	W32/Poker.A
Microsoft	Trojan:Win32/Wacatac.B!ml
Cynet	Malicious (score: 100)
AhnLab-V3	Trojan/Win32.Scar.C149469
McAfee	GenericRXAA-AA!1EC2EEC55BBF
Malwarebytes	Malware.AI.3629027772
SentinelOne	Static AI – Malicious PE
MaxSecure	Trojan.Malware.184952320.susgen
Fortinet	W32/ULPM.16C0!tr
AVG	Win32:Evo-gen [Trj]
CrowdStrike	win/malicious_confidence_90% (D)

How to remove Malware.AI.3629027772?

Malware.AI.3629027772 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X