Malware

Should I remove “Malware.AI.3750061211”?

Malware Removal

The Malware.AI.3750061211 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.3750061211 virus can do?

  • Executable code extraction
  • Injection (inter-process)
  • Injection (Process Hollowing)
  • Creates RWX memory
  • A process attempted to delay the analysis task.
  • Reads data out of its own binary image
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX
  • Attempts to modify desktop wallpaper
  • Executed a process and injected code into it, probably while unpacking
  • Exhibits behavior characteristic of Cerber ransomware
  • Attempts to execute a binary from a dead or sinkholed URL
  • Attempts to modify proxy settings
  • Attempts to access Bitcoin/ALTCoin wallets
  • Collects information to fingerprint the system

How to determine Malware.AI.3750061211?



File Info:

crc32: B981C243
md5: accf27e909d833153b4e0c6ed30a1119
name: ACCF27E909D833153B4E0C6ED30A1119.mlw
sha1: 428c0309cb4e98f0f6369ef838290f16f187051a
sha256: 9b94a919d4064fcee2736b7df343847109aa0c910bd176b98d64979011c588c1
sha512: dc3cf0ef70833498411a09215a777034f2080cb0aa4770feb2f182c4d1579549676f3ddcc2adbe3f2ba4b0d07916eea1e898189dc69b936cef5472cb35a2b79b
ssdeep: 6144:gVtaytigXMCDKjfsmBGCmX6UfPxnO0v/0sOp3Ybm+vclG+Sq8s9avLoAZ:gVYyRrmjdBGX6KxO0n0sHbmP02Eoi
type: PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed


Version Info:

InternalName: zefze.exe
FileVersion: 1.0.0.1
OriginalFilename: zefze.exe
ProductVersion: 1.0.0.1
Translation: 0x040c 0x04b0

Malware.AI.3750061211 also known as:

BkavW32.AIDetect.malware1
K7AntiVirusTrojan ( 00504a281 )
Elasticmalicious (high confidence)
DrWebTrojan.Encoder.10239
CynetMalicious (score: 100)
CAT-QuickHealTrojan.Generic
ALYacGen:Variant.Symmi.73432
CylanceUnsafe
ZillyaTrojan.Filecoder.Win32.4334
SangforTrojan.Win32.Save.a
CrowdStrikewin/malicious_confidence_100% (W)
AlibabaRansom:Win32/Cerber.e457493e
K7GWTrojan ( 00504a281 )
Cybereasonmalicious.909d83
SymantecML.Attribute.HighConfidence
ESET-NOD32Win32/Filecoder.Cerber.G
APEXMalicious
AvastWin32:Trojan-gen
KasperskyHEUR:Trojan.Win32.Generic
BitDefenderGen:Variant.Symmi.73432
NANO-AntivirusTrojan.Win32.FileCoder.elnyob
MicroWorld-eScanGen:Variant.Symmi.73432
TencentMalware.Win32.Gencirc.10b7a50b
Ad-AwareGen:Variant.Symmi.73432
SophosMal/Cerber-U
ComodoMalware@#ltqtlat1fqv4
BitDefenderThetaGen:NN.ZexaF.34628.tmNfaene9!hm
VIPRETrojan.Win32.Generic!BT
TrendMicroRansom_HPLOCKY.SM4
McAfee-GW-EditionBehavesLike.Win32.Adware.fc
FireEyeGeneric.mg.accf27e909d83315
EmsisoftGen:Variant.Symmi.73432 (B)
SentinelOneStatic AI – Malicious PE
JiangminTrojan.Generic.ejzvo
WebrootW32.Ransom.Gen
AviraHEUR/AGEN.1127095
MicrosoftRansom:Win32/Cerber
ArcabitTrojan.Symmi.D11ED8
AegisLabTrojan.Win32.Generic.4!c
ZoneAlarmHEUR:Trojan.Win32.Generic
GDataGen:Variant.Symmi.73432
AhnLab-V3Trojan/Win32.Cerber.R195101
Acronissuspicious
McAfeeRansomware-FMEE!ACCF27E909D8
MAXmalware (ai score=87)
VBA32Trojan.Encoder
MalwarebytesMalware.AI.3750061211
PandaTrj/Genetic.gen
TrendMicro-HouseCallRansom_HPLOCKY.SM4
RisingRansom.Cerber!8.3058 (CLOUD)
IkarusTrojan-Ransom.Cerber
FortinetW32/Kryptik.FNWL!tr
AVGWin32:Trojan-gen
Paloaltogeneric.ml
Qihoo-360Win32/Ransom.Generic.HwsBEpsA

How to remove Malware.AI.3750061211?

Malware.AI.3750061211 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment