Malware.AI.3640494204 malicious file

The Malware.AI.3640494204 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.3640494204 virus can do?

The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid

How to determine Malware.AI.3640494204?


File Info:
name: A1399B49E8890B0D62B2.mlw
path: /opt/CAPEv2/storage/binaries/555030f01c199d2a556202181bfbb2f297724cd26481752821cea74d69601da1
crc32: 48B1D927
md5: a1399b49e8890b0d62b2727ae402634a
sha1: b32aa74141f0176e0475833f4025f37886d5e4a9
sha256: 555030f01c199d2a556202181bfbb2f297724cd26481752821cea74d69601da1
sha512: 060f8818ad9a242931c93b9cc0ce506014bce6294f9f66b050af23f2d63e85a314ae9b68b96e2528db2294af1727da91194a5bfdfc5af1b746c2a19d7793c5af
ssdeep: 768:GgAwABEirTNOQLHQ92uiYDt5Fa+TraTzo9AB7xsAo:GAitOQk4YDtnlTrawao
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T17C241A31F610D47BE480027FC3D69772B4AD5D301B9520E3D3E06E9DA63A9EAB53158E
sha3_384: 00c37a4a2bbdd0dfa50a75ad091338604ddbe5f0e8ce981c527c91d1778ea7fc9455a076460b8d1547581b443368361b
ep_bytes: 558bec6aff68d87742006870aa400064
timestamp: 1970-01-01 00:00:00

Version Info:
0: [No Data]

Malware.AI.3640494204 also known as:

Bkav	W32.AIDetect.malware1
Lionic	Worm.Win32.Juched.lyjw
Elastic	malicious (high confidence)
MicroWorld-eScan	Gen:Variant.ClipBanker.215
FireEye	Generic.mg.a1399b49e8890b0d
CAT-QuickHeal	Trojan.Mauvaise.SL1
ALYac	Gen:Variant.ClipBanker.215
Cylance	Unsafe
Sangfor	Trojan.Win32.Save.a
K7AntiVirus	Trojan ( 0058cb161 )
Alibaba	Trojan:Win32/GenKryptik.36d2e086
K7GW	Trojan ( 0058cb161 )
Cybereason	malicious.9e8890
VirIT	Worm.Win32.Generic.JS
Cyren	W32/SuspPack.FW.gen!Eldorado
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win32/GenKryptik.EZLE
APEX	Malicious
Kaspersky	UDS:Trojan.Win32.Generic
BitDefender	Gen:Variant.ClipBanker.215
NANO-Antivirus	Trojan.Win32.Juched.fiiyae
Avast	Win32:Malware-gen
Tencent	Win32.Trojan.Clipbanker.Lizx
Ad-Aware	Gen:Variant.ClipBanker.215
Emsisoft	Gen:Variant.ClipBanker.215 (B)
TrendMicro	TROJ_GEN.R002C0GA722
McAfee-GW-Edition	BehavesLike.Win32.Infected.dz
Sophos	Mal/Generic-S
SentinelOne	Static AI – Malicious PE
GData	Gen:Variant.ClipBanker.215
Jiangmin	Trojan/Generic.adwgc
Avira	TR/Patched.Ren.Gen3
Gridinsoft	Ransom.Win32.Wacatac.sa
Arcabit	Trojan.ClipBanker.215
Microsoft	Worm:Win32/Ganelp
Cynet	Malicious (score: 100)
AhnLab-V3	Worm/Win.Palevo.C4899632
Acronis	suspicious
McAfee	Artemis!A1399B49E889
MAX	malware (ai score=83)
VBA32	Trojan.Wacatac
Malwarebytes	Malware.AI.3640494204
TrendMicro-HouseCall	TROJ_GEN.R002C0GA722
Rising	Worm.Ganelp!8.2BD (CLOUD)
Yandex	Trojan.GenAsa!ceN4aAluftc
Ikarus	Trojan.Win32.Krypt
MaxSecure	Worm.W32.Jusched.BUZ
Fortinet	W32/GenKryptik.EZLE!tr
BitDefenderTheta	Gen:NN.ZexaF.34114.nCW@aWGJ09g
AVG	Win32:Malware-gen
CrowdStrike	win/malicious_confidence_80% (D)

How to remove Malware.AI.3640494204?

Malware.AI.3640494204 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X