Malware

Malware.AI.3726696432 removal tips

Malware Removal

The Malware.AI.3726696432 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.3726696432 virus can do?

  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • Dynamic (imported) function loading detected
  • Reads data out of its own binary image
  • Creates an autorun.inf file
  • Authenticode signature is invalid
  • A scripting utility was executed
  • Created a process from a suspicious location
  • A script process initiated network activity
  • Attempts to modify proxy settings
  • Creates a copy of itself

How to determine Malware.AI.3726696432?



File Info:

name: A801F2CF4DC6781E264A.mlw
path: /opt/CAPEv2/storage/binaries/33e40f941171a4578bb629dd1c7d766d82d4769b32231115811ee93d30c9f3bd
crc32: 015FF3AA
md5: a801f2cf4dc6781e264a505bd4f6baec
sha1: 92d0352f69e07ea6f416691fc00440ae836711fb
sha256: 33e40f941171a4578bb629dd1c7d766d82d4769b32231115811ee93d30c9f3bd
sha512: 14910e2365203e9807d0aa3ecc39763047ac523c575f2886fe4647b2929d9d0b507b1ec919e91a3d4488b40b78e7fa072f3470c468135c250d33c301b7e764d8
ssdeep: 24576:AEEZb6vdFoYANCodoRktUcazumXRLssVf1kaMysZgjS1hqgSC/izIfpwiz0wy/vm:AJb6vLoYO+79VfWaRjvQoCpwizsm
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T192F5D45BEE35EC23F96C34F2D888EB692C1D6D240AA3746236B9F66DD833F115710252
sha3_384: 4406623aa89e5746014dcec6f6b10d8483812d2a824b709752d7ef8f1f1c2a421a2ac7301cb92c18fc8c19ff005f76c2
ep_bytes: 558bec6aff688000420068e8bf400064
timestamp: 2013-10-07 05:33:12


Version Info:

0: [No Data]

Malware.AI.3726696432 also known as:

BkavW32.AIDetect.malware1
LionicTrojan.Win32.Badur.lZKm
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Doina.1368
FireEyeGeneric.mg.a801f2cf4dc6781e
ALYacGen:Variant.Doina.1368
CylanceUnsafe
SangforTrojan.Win32.Save.a
K7AntiVirusTrojan ( 005771511 )
Alibabavirus:Win32/InfectPE.ali2000007
K7GWTrojan ( 005771511 )
Cybereasonmalicious.f4dc67
BitDefenderThetaGen:NN.ZexaF.34212.vpZ@ayKpFsm
CyrenW32/Autorun.DV.gen!Eldorado
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/Plyromt.C
APEXMalicious
Paloaltogeneric.ml
CynetMalicious (score: 100)
KasperskyVHO:Trojan.Win32.Sdum.gen
BitDefenderGen:Variant.Doina.1368
AvastWin32:Malware-gen
TencentWin32.Virus.Plyromt.Lkmz
Ad-AwareGen:Variant.Doina.1368
SophosBlackMoon Packed (PUA)
ComodoTrojWare.Win32.BlackMoon.R@8c1vff
F-SecureHeuristic.HEUR/AGEN.1227814
DrWebTrojan.DownLoader11.15819
TrendMicroTROJ_GEN.R002C0DB622
McAfee-GW-EditionBehavesLike.Win32.Exploit.wm
EmsisoftGen:Variant.Doina.1368 (B)
IkarusTrojan-Downloader.HTML.Adodb
GDataWin32.Trojan.Agent.WP
AviraHEUR/AGEN.1227814
Antiy-AVLTrojan[Banker]/Win32.BlackMoon.a
GridinsoftRansom.Win32.Miner.sa
ArcabitTrojan.Doina.D558
ZoneAlarmHEUR:Trojan.Win32.Bingoml.gen
MicrosoftTrojan:Win32/Plyromt!MSR
AhnLab-V3Exploit/Win.MS03-043.R471140
Acronissuspicious
McAfeeGenericRXAA-AA!A801F2CF4DC6
MAXmalware (ai score=80)
VBA32BScope.TrojanRansom.Gen
MalwarebytesMalware.AI.3726696432
TrendMicro-HouseCallTROJ_GEN.R002C0DB622
RisingTrojan.Fsysna!1.D1F1 (CLOUD)
YandexHTML.Psyme.Gen
SentinelOneStatic AI – Malicious PE
FortinetW32/CoinMiner.ESFJ!tr
AVGWin32:Malware-gen
PandaTrj/Genetic.gen
CrowdStrikewin/malicious_confidence_70% (W)

How to remove Malware.AI.3726696432?

Malware.AI.3726696432 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment