Malware.AI.3725969139 information

The Malware.AI.3725969139 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.3725969139 virus can do?

CAPE extracted potentially suspicious content
The binary likely contains encrypted or compressed data.
Authenticode signature is invalid
Binary compilation timestomping detected

How to determine Malware.AI.3725969139?


File Info:
name: 6C4CD6BED9B2495812D3.mlw
path: /opt/CAPEv2/storage/binaries/5731321b49c25cf22c1d1848b72458b25c96974fd58b47bc546bf8a583fb8cbe
crc32: 6B14EEB1
md5: 6c4cd6bed9b2495812d3f2ec83c9ec8d
sha1: 98fd48d6dc0fc07a5089021c246d2a5ebe6746bf
sha256: 5731321b49c25cf22c1d1848b72458b25c96974fd58b47bc546bf8a583fb8cbe
sha512: dd20fe1daeddb8c63b0ee8b7a1e1ede79de22f9500a054550adfc355dcb5f8d25c03d8941eb2da324ab7b580e082416a15ad14ca4c499bef34494a4f09d3f620
ssdeep: 393216:hkSl2LWPAOPY9k6P0RT48fh91wT5N0dPHhndQHR6QLkjx:3PLM01LD1U5NOAHR67
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T150F6339CBCAC8728C8F84CB54E67A6699A77A4D2D872A71CF810550F03534C96FBB473
sha3_384: f4ba61ab22d0b37ac11c9419875de1bbc40a076daee5f0ed58d0cdf463d5be534ecbb2298ba5882d876c4a0a62f0e4ca
ep_bytes: ff250020400000000000000000000000
timestamp: 2066-06-21 01:50:22

Version Info:
Translation: 0x0000 0x04b0
Comments: 
CompanyName: 
FileDescription: Windows Sürücü Yapısı
FileVersion: 1.0.0.0
InternalName: Windows Sürücü Yapısı.exe
LegalCopyright: Copyright ©  2023
LegalTrademarks: 
OriginalFilename: Windows Sürücü Yapısı.exe
ProductName: Windows Sürücü Yapısı
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

Malware.AI.3725969139 also known as:

Bkav	W32.Common.BFF498A1
Lionic	Trojan.Win32.Bobik.l!c
MicroWorld-eScan	Gen:Variant.Tedy.511608
FireEye	Gen:Variant.Tedy.511608
Skyhigh	Artemis!Trojan
McAfee	Artemis!6C4CD6BED9B2
Cylance	unsafe
Sangfor	Spyware.Msil.Bobik.Vtyt
Alibaba	TrojanSpy:MSIL/Bobik.e6d2ab3e
CrowdStrike	win/malicious_confidence_90% (W)
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of MSIL/Small.IL
APEX	Malicious
Cynet	Malicious (score: 100)
Kaspersky	HEUR:Trojan-Spy.MSIL.Bobik.gen
BitDefender	Gen:Variant.Tedy.511608
Avast	Win32:SpywareX-gen [Trj]
Tencent	Msil.Trojan-Spy.Bobik.Xwhl
Sophos	Mal/Generic-S
F-Secure	Trojan.TR/Spy.Bobik.jkrgv
VIPRE	Gen:Variant.Tedy.511608
TrendMicro	TROJ_GEN.R011C0XA524
Emsisoft	Gen:Variant.Tedy.511608 (B)
Ikarus	Trojan.SPY.Bobik
GData	Gen:Variant.Tedy.511608
Google	Detected
Avira	TR/Spy.Bobik.jkrgv
Antiy-AVL	Trojan[Spy]/MSIL.Bobik
Arcabit	Trojan.Tedy.D7CE78
ZoneAlarm	HEUR:Trojan-Spy.MSIL.Bobik.gen
Microsoft	Program:Win32/Wacapew.C!ml
Varist	W32/ABRisk.UOAI-3865
ALYac	Gen:Variant.Tedy.511608
MAX	malware (ai score=87)
Malwarebytes	Malware.AI.3725969139
Panda	Trj/Chgt.AD
TrendMicro-HouseCall	TROJ_GEN.R011C0XA524
Rising	Spyware.Bobik!8.108FF (CLOUD)
MaxSecure	Trojan.Malware.216125030.susgen
Fortinet	PossibleThreat
AVG	Win32:SpywareX-gen [Trj]
Cybereason	malicious.6dc0fc
DeepInstinct	MALICIOUS

How to remove Malware.AI.3725969139?

Malware.AI.3725969139 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X