Malware

Malware.AI.3746888324 (file analysis)

Malware Removal

The Malware.AI.3746888324 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.3746888324 virus can do?

  • Dynamic (imported) function loading detected
  • Authenticode signature is invalid
  • Network activity detected but not expressed in API logs

Related domains:

wpad.local-net

How to determine Malware.AI.3746888324?



File Info:

name: B710901726771C00CB1A.mlw
path: /opt/CAPEv2/storage/binaries/d6614413ba53a2dcd54b241f46a1f8d0733f3e1788e30dfed4f6df0a2c540228
crc32: 06EA08DA
md5: b710901726771c00cb1ae3d79cc0ab14
sha1: b991d094886f54c2e513598a5c289489f77dece6
sha256: d6614413ba53a2dcd54b241f46a1f8d0733f3e1788e30dfed4f6df0a2c540228
sha512: ef45d3c34b7337fd2ac7513e21165f512522c971c8baab24203607b261f801fc2eef324858c85ed3f0ddf8d1a325a9a78048b519ab4a6f8445e658934322980f
ssdeep: 192:cT0ntpvB04XTOgR68P3bxC0r0yA0vBLa7mM1BfT3l:cTiO4XTOKf3btr0yjBLaxPfz
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1A242C44677F8CA21E2BF0A7B6DB3A51007BBF1538C26E21D1549904A4E377944FE2F62
sha3_384: eb37348109c51b51d7d9ce4be4857068a7fadb9dff58250e2069801aff9f81885169b5da524f47578e938c6c35ba79e1
ep_bytes: ff250020400000000000000000000000
timestamp: 2018-09-14 12:47:11


Version Info:

Translation: 0x0000 0x04b0
Comments: 
CompanyName: 
FileDescription: clear cook and pass
FileVersion: 1.0.0.0
InternalName: clear cook and pass.exe
LegalCopyright: Copyright ©  2018
LegalTrademarks: 
OriginalFilename: clear cook and pass.exe
ProductName: clear cook and pass
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

Malware.AI.3746888324 also known as:

CynetMalicious (score: 99)
FireEyeGeneric.mg.b710901726771c00
McAfeeArtemis!B71090172677
CylanceUnsafe
ZillyaTrojan.GenericKD.Win32.204263
SangforRiskware.Win32.Agent.ky
K7AntiVirusTrojan ( 0053d9161 )
K7GWTrojan ( 0053d9161 )
Cybereasonmalicious.4886f5
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of MSIL/Agent.SUW
APEXMalicious
Paloaltogeneric.ml
KasperskyUDS:DangerousObject.Multi.Generic
AlibabaTrojan:MSIL/Generic.bd69305c
NANO-AntivirusTrojan.Win32.TrjGen.fhxlhe
AvastWin32:Malware-gen
TencentWin32.Trojan.Generic.Pdlo
ComodoMalware@#3tg7iymh2ezsp
DrWebTrojan.Siggen7.56976
McAfee-GW-EditionArtemis!Trojan
SophosMal/Generic-S
AviraTR/Agent.sjxfq
MicrosoftBackdoor:Win32/Bladabindi!ml
BitDefenderThetaGen:NN.ZemsilF.34294.am0@aCvr1vc
VBA32TScope.Trojan.MSIL
MalwarebytesMalware.AI.3746888324
TrendMicro-HouseCallTROJ_GEN.R002H0CIN21
YandexTrojan.Agent!GMbxLBadD8U
IkarusTrojan.MSIL.Agent
MaxSecureTrojan.Malware.300983.susgen
FortinetPossibleThreat
AVGWin32:Malware-gen
PandaTrj/GdSda.A

How to remove Malware.AI.3746888324?

Malware.AI.3746888324 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment