How to remove “Malware.AI.3699075476”?

The Malware.AI.3699075476 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.3699075476 virus can do?

Dynamic (imported) function loading detected
CAPE extracted potentially suspicious content
Authenticode signature is invalid
Binary compilation timestomping detected

How to determine Malware.AI.3699075476?


File Info:
name: 67898C2B9AE9BEF84B57.mlw
path: /opt/CAPEv2/storage/binaries/027811d709e7e584cb872acbbe629aa485232591db9860b3df5483174e0d2de8
crc32: 950929C8
md5: 67898c2b9ae9bef84b57c8a8873797ce
sha1: fa82d7f29ea8954e2e76052651cb620af8629dd5
sha256: 027811d709e7e584cb872acbbe629aa485232591db9860b3df5483174e0d2de8
sha512: 042ea82327702604e12a8f284cef11d8d9218147f388a4c89d568064ddc3b543b9a9a75d32bd33b4e03df2a342f51da58e8317819be736b9983d8f3b8280ed23
ssdeep: 6144:s3gWUs6kBnCUxCU5SCUw5tAfRfxCLk26hUpP:s3rQqntdSEKhU
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T179543A9232789F5AC43E8BF14226804043F22D0B285ED65E6EC276CF3B75F8157A5E67
sha3_384: 85dfb252bb13405032cb1fa0f9c6038e5fbb03c2176b4b230c23821918054484db6a4f8fd6eafbbf392890d684ff69f2
ep_bytes: ff250020400000000000000000000000
timestamp: 2049-08-31 19:16:49

Version Info:
Translation: 0x0000 0x04b0
Comments: Panel to send attacks
CompanyName: HoverCore
FileDescription: HomeServices
FileVersion: 1.0.0.0
InternalName: HomeServices.exe
LegalCopyright: Copyright ©  2021
LegalTrademarks: By HoverCore
OriginalFilename: HomeServices.exe
ProductName: HomeServices
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

Malware.AI.3699075476 also known as:

Lionic	Trojan.Win32.Lazy.4!c
Cynet	Malicious (score: 99)
FireEye	Gen:Variant.Lazy.46469
CAT-QuickHeal	PUA.AgentFC.S24738528
McAfee	GenericRXNG-XO!67898C2B9AE9
K7AntiVirus	Hacktool ( 0057c3df1 )
Alibaba	Trojan:MSIL/MalwareX.3761af18
K7GW	Hacktool ( 0057c3df1 )
Cybereason	malicious.b9ae9b
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of MSIL/HackTool.Agent.PE
Avast	Win32:MalwareX-gen [Trj]
BitDefender	Gen:Variant.Lazy.46469
MicroWorld-eScan	Gen:Variant.Lazy.46469
Tencent	Win32.Trojan.Bulz.Wpjt
Ad-Aware	Gen:Variant.Lazy.46469
Emsisoft	Gen:Variant.Lazy.46469 (B)
TrendMicro	TROJ_GEN.R002C0PKQ21
McAfee-GW-Edition	GenericRXNG-XO!67898C2B9AE9
Sophos	Generic PUA PK (PUA)
SentinelOne	Static AI – Suspicious PE
GData	Gen:Variant.Lazy.46469
Avira	TR/Hacktool.tfcia
Antiy-AVL	Trojan/Generic.ASMalwS.34D9FAE
Gridinsoft	Ransom.Win32.Wacatac.sa
Microsoft	Trojan:Win32/Wacatac.B!ml
AhnLab-V3	Malware/Win.XO.C4469132
ALYac	Gen:Variant.Lazy.46469
MAX	malware (ai score=84)
Malwarebytes	Malware.AI.3699075476
TrendMicro-HouseCall	TROJ_GEN.R002C0PKQ21
Yandex	Riskware.Agent!PqwJfOLBQWE
Fortinet	MSIL/Agent.PE!tr
AVG	Win32:MalwareX-gen [Trj]
MaxSecure	Trojan.Malware.300983.susgen

How to remove Malware.AI.3699075476?

Malware.AI.3699075476 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X