Malware.AI.3737143992 information

The Malware.AI.3737143992 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.3737143992 virus can do?

Sample contains Overlay data
Authenticode signature is invalid

How to determine Malware.AI.3737143992?


File Info:
name: 054E22B11D370BA76E49.mlw
path: /opt/CAPEv2/storage/binaries/7fd9ca65f5e56acaec6088dd5d754250ae1cd1b94b0d30c79e8e3459b49e2208
crc32: 1F4EBBE3
md5: 054e22b11d370ba76e4901b49fd4fa2b
sha1: 657b0d56333481fd70d573e949881f8ae7035ded
sha256: 7fd9ca65f5e56acaec6088dd5d754250ae1cd1b94b0d30c79e8e3459b49e2208
sha512: 6fb1738736b85a686deffe90d292294ea63d9b4fe2386777f32abc2fac7b26a4a58bef69eae1661a9cd43c4fe9b37c27e2562b3838368950da5469d332f6034d
ssdeep: 768:qpKmCmWIeK7QgPjGvxrDTIJbeqRdZ/yxrBhauKK/VIqzzEVPIL4W0n2TEDN+U2QL:9m1j/PjGRw1eoza7X/VVEdw6LkQ36mR
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T13C536B2275D1C432E0A12E3809B8D7716E3EB832677994CB378407AA5FB17D1E939317
sha3_384: ca008abcf97245c8258085a31d464fa9a688cc31b59cc271f3dae6f1978879d7dac326f44d2b2632ccc2b2061f727962
ep_bytes: e89a3a0000e995feffff2da403000074
timestamp: 2013-12-25 15:24:42

Version Info:
0: [No Data]

Malware.AI.3737143992 also known as:

FireEye	Generic.mg.054e22b11d370ba7
Skyhigh	GenericRXKI-DE!054E22B11D37
McAfee	GenericRXKI-DE!054E22B11D37
Malwarebytes	Malware.AI.3737143992
Zillya	Trojan.KMSAuto.Win32.762
K7AntiVirus	Unwanted-Program ( 004bbb541 )
K7GW	Unwanted-Program ( 004bbb541 )
Cybereason	malicious.633348
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (high confidence)
ESET-NOD32	a variant of Win32/HackKMS.L potentially unsafe
Cynet	Malicious (score: 100)
SentinelOne	Static AI – Suspicious PE
Kingsoft	malware.kb.a.898
Microsoft	PUA:Win32/Presenoker
Cylance	unsafe
Rising	Trojan.Win32.KMS.b (CLASSIC)
Yandex	PUP.Agent!SibhvsH8fas
CrowdStrike	win/malicious_confidence_60% (D)

How to remove Malware.AI.3737143992?

Malware.AI.3737143992 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X