Malware

Malware.AI.3668672726 removal guide

Malware Removal

The Malware.AI.3668672726 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.3668672726 virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • CAPE extracted potentially suspicious content
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine Malware.AI.3668672726?



File Info:

name: 29B15229734A29B5A4C8.mlw
path: /opt/CAPEv2/storage/binaries/923da2fa40a7a4a2550719568bd0469776bfa2f78e9b8befaea9bf303b9d15ed
crc32: 1AAB1687
md5: 29b15229734a29b5a4c8f9e1be99723d
sha1: 287d522747a526f58e72bafe9ff4565882e3b560
sha256: 923da2fa40a7a4a2550719568bd0469776bfa2f78e9b8befaea9bf303b9d15ed
sha512: f760f46629658af0d8087300d2f1ccea4ba59dc73088aa5ff7eeb0a0e5a48811f05df0a9295ec72feb618f0a9828bdd547dbe06eccea96d7beea2738b7400a89
ssdeep: 6144:R31s/b++KRcFt/Q/0a+pZ6dXyZi3x4fiRbwuVmuvHX1+9wICUqdLEt9:RuDVKWFt/OEpoXpyfiRbFVmu/F+WUqRs
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1BB74D020F5D8E435DA5C923299BC5BB78020F1354B5246CBE3A8464A87B08EBCF377D6
sha3_384: 7e4c2884140b4ed5fcd3ab6695736b9f2a90165c7c0bee3e4f82e63c59d9087aead5b71d3bd53d74eb6fb7128a99e148
ep_bytes: e887080000e978feffff8b4df464890d
timestamp: 2021-02-15 02:59:40


Version Info:

CompanyName: Adobe Systems Incorporated
FileDescription: Adobe Acrobat 32BitMAPIBroker
FileVersion: 21.1.20138.422477
LegalCopyright: Copyright 1984-2021 Adobe Systems Incorporated and its licensors. All rights reserved.
ProductName: Adobe Acrobat 32BitMAPIBroker
ProductVersion: 21.1.20138.422477
OriginalFilename: 32BitMAPIBroker.exe
Translation: 0x0409 0x04e4

Malware.AI.3668672726 also known as:

BkavW32.Common.B27B9E1F
LionicTrojan.Win32.Lazy.4!c
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Lazy.386554
FireEyeGeneric.mg.29b15229734a29b5
ALYacGen:Variant.Lazy.386554
MalwarebytesMalware.AI.3668672726
VIPREGen:Variant.Lazy.386554
SangforTrojan.Win32.Save.a
AlibabaTrojan:Win32/Injuke.397e4a5d
CrowdStrikewin/malicious_confidence_100% (W)
CyrenW32/Doina.AF.gen!Eldorado
ESET-NOD32a variant of Win32/Patched.IP
KasperskyTrojan.Win32.Injuke.hvun
BitDefenderGen:Variant.Lazy.386554
NANO-AntivirusVirus.Win32.Gen-Crypt.ccnc
AvastFileRepMalware [Misc]
RisingTrojan.Generic@AI.90 (RDML:7Tbc0FLKcbpEy8W7765exA)
SophosGeneric Reputation PUA (PUA)
McAfee-GW-EditionBehavesLike.Win32.Generic.fc
Trapminemalicious.high.ml.score
EmsisoftGen:Variant.Lazy.386554 (B)
GDataGen:Variant.Lazy.386554
GoogleDetected
ArcabitTrojan.Lazy.D5E5FA
ZoneAlarmTrojan.Win32.Injuke.hvun
MicrosoftTrojan:Win32/Wacatac.B!ml
AhnLab-V3Malware/Win.Generic.C5482840
McAfeeArtemis!29B15229734A
MAXmalware (ai score=87)
VBA32BScope.Trojan.Meterpreter
Cylanceunsafe
TrendMicro-HouseCallTROJ_GEN.R002H09I723
IkarusTrojan.Win32.Patched
FortinetW32/Patched.IP!tr
AVGFileRepMalware [Misc]
DeepInstinctMALICIOUS

How to remove Malware.AI.3668672726?

Malware.AI.3668672726 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment