Malware.AI.3743632120 (file analysis)

The Malware.AI.3743632120 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.3743632120 virus can do?

Behavioural detection: Executable code extraction – unpacking
Unconventionial binary language: Chinese (Simplified)
Unconventionial language used in binary resources: Chinese (Simplified)
Authenticode signature is invalid

How to determine Malware.AI.3743632120?


File Info:
name: 5E5765924B328021273C.mlw
path: /opt/CAPEv2/storage/binaries/c1b1d8f403596492bdea007a7e27a979cde8e2e0787389b2ee6a441caa362011
crc32: 5253CE3F
md5: 5e5765924b328021273c6fb4a2557cdb
sha1: ed22685ee002b62e727968f5318d07112f554b98
sha256: c1b1d8f403596492bdea007a7e27a979cde8e2e0787389b2ee6a441caa362011
sha512: 8da7381a1778f6b311dd7ae29b48bcc2a6a1b25ee0dd48d2f7cc5dda8f91c5e216ddac96e0c7f0d645df6ea595ea6186932e182914ad5f341a07d314277601f6
ssdeep: 192:VWt4LYcMe0vO8NEUCfMn+ibwICfD2fxE:VWMk1AfMn+iYD2fxE
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1BEB2D923EA6D9433E7494BB20E7665F908263C311D80CD0F194EBE5E2D766426AF1B1F
sha3_384: 5b1c717c35191234a03b6eb2bd07310c44cf14d9360c49cce2a1a0c0487ef5e30a38b363be3527313e795c11e217f5cd
ep_bytes: 68001a4000e8f0ffffff000000000000
timestamp: 2002-06-11 08:21:41

Version Info:
Translation: 0x0804 0x04b0
CompanyName: yb
ProductName: MakeRegNO
FileVersion: 1.00
ProductVersion: 1.00
InternalName: MakeRegNO
OriginalFilename: MakeRegNO.exe

Malware.AI.3743632120 also known as:

Lionic	Trojan.Win32.Generic.4!c
MicroWorld-eScan	Gen:Variant.Lazy.357966
Skyhigh	BehavesLike.Win32.BadFile.mz
Cylance	unsafe
Emsisoft	Gen:Variant.Lazy.357966 (B)
VIPRE	Gen:Variant.Lazy.357966
Antiy-AVL	GrayWare/Win32.Generic
Arcabit	Trojan.Lazy.D5764E
Google	Detected
MAX	malware (ai score=81)
Malwarebytes	Malware.AI.3743632120
TrendMicro-HouseCall	TROJ_GEN.R002H09G323
MaxSecure	Trojan.Malware.203545543.susgen
Fortinet	W32/PossibleThreat
DeepInstinct	MALICIOUS

How to remove Malware.AI.3743632120?

Malware.AI.3743632120 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X