Malware

Should I remove “Malware.AI.3765595362”?

Malware Removal

The Malware.AI.3765595362 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.3765595362 virus can do?

  • Executable code extraction
  • Creates RWX memory
  • A process attempted to delay the analysis task.
  • A process created a hidden window
  • Unconventionial language used in binary resources: Danish
  • The binary likely contains encrypted or compressed data.
  • Uses Windows utilities for basic functionality
  • Tries to suspend Cuckoo threads to prevent logging of malicious activity
  • Attempts to delete volume shadow copies
  • Installs itself for autorun at Windows startup
  • Writes a potential ransom message to disk
  • Creates a copy of itself
  • Appends a known multi-family ransomware file extension to files that have been encrypted
  • Anomalous binary characteristics
  • Uses suspicious command line tools or Windows utilities

How to determine Malware.AI.3765595362?



File Info:

crc32: B1A8F881
md5: 6120c33b894348fafe2e59cd92c74b16
name: 6120C33B894348FAFE2E59CD92C74B16.mlw
sha1: 1682a50948f26fa20fc0ce2d3e876caff08ea297
sha256: 885f5ba1507184ae2dd0a7a824e0a4fe52455d3dd32cd913235b927501b7e226
sha512: efe0e9ab7159f4f837298a406a1dd3605af1a61f9506934ce8010094496c069ea9aa3782a5c3afe9174de4967da5b5eb41320c60d379d7a40867dcba075cc2c0
ssdeep: 12288:lnaZ0z0U8i97odGYSs4cWVDYaLLRms9wUE/6deyYMOp5bsu7wEhbf:DRfE/6deywe+Jhbf
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright: Qualtrics All rights reserved.
InternalName: Monte Megacycle
FileVersion: 2.6.6.2
CompanyName: Qualtrics
PrivateBuild: 2.6.6.2
LegalTrademarks: Qualtrics All rights reserved.
Comments: Dst Autoregressive Cymedix Vertices Kills
ProductName: Monte Megacycle
Languages: English
ProductVersion: 2.6.6.2
FileDescription: Dst Autoregressive Cymedix Vertices Kills
OriginalFilename: Monte Megacycle.exe
Translation: 0x0406 0x04b0

Malware.AI.3765595362 also known as:

BkavW32.AIDetect.malware2
Elasticmalicious (high confidence)
MalwarebytesMalware.AI.3765595362
ZillyaTrojan.Purgen.Win32.79
CrowdStrikewin/malicious_confidence_100% (W)
BitDefenderTrojan.Agent.CMJE
K7GWTrojan ( 005128031 )
K7AntiVirusTrojan ( 005128031 )
BitDefenderThetaGen:NN.ZexaF.34608.yq1@amqU3AeG
CyrenW32/Trojan.APKO-2047
SymantecML.Attribute.HighConfidence
ESET-NOD32Win32/Filecoder.FV
APEXMalicious
Paloaltogeneric.ml
CynetMalicious (score: 100)
AlibabaRansom:Win32/Genasom.ali1000102
NANO-AntivirusTrojan.Win32.Purgen.esmgnb
ViRobotTrojan.Win32.Ransom.393216.C
MicroWorld-eScanTrojan.Agent.CMJE
TencentMalware.Win32.Gencirc.1149718c
Ad-AwareTrojan.Agent.CMJE
SophosMal/Generic-S
ComodoMalware@#3bm6ni3k3khzp
F-SecureHeuristic.HEUR/AGEN.1119073
DrWebTrojan.Encoder.11539
VIPRETrojan.Win32.Generic!BT
McAfee-GW-EditionBehavesLike.Win32.Generic.fc
FireEyeGeneric.mg.6120c33b894348fa
EmsisoftTrojan.Agent.CMJE (B)
SentinelOneStatic AI – Malicious PE
JiangminTrojan.Purgen.bb
AviraHEUR/AGEN.1119073
eGambitUnsafe.AI_Score_99%
Antiy-AVLTrojan[Ransom]/Win32.Purgen
ArcabitTrojan.Agent.CMJE
AegisLabTrojan.Win32.Generic.4!c
ZoneAlarmTrojan-Ransom.Win32.Purgen.mq
GDataTrojan.Agent.CMJE
AhnLab-V3Win-Trojan/Sagecrypt.Gen
VBA32Trojan-Ransom.Purgen
MAXmalware (ai score=100)
RisingRansom.Ergop!8.E493 (TFE:5:VMMp2KkK9ZO)
YandexTrojan.Purgen!XTAI2jypkWM
IkarusTrojan.Crypt
FortinetW32/Generic.AC.3F7DD1!tr
Qihoo-360Win32/Ransom.Purgen.HwoCo6MA

How to remove Malware.AI.3765595362?

Malware.AI.3765595362 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment