Malware.AI.377519932 (file analysis)

The Malware.AI.377519932 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.377519932 virus can do?

Yara rule detections observed from a process memory dump/dropped files/CAPE
The binary likely contains encrypted or compressed data.
Authenticode signature is invalid

How to determine Malware.AI.377519932?


File Info:
name: C48371C0F614E93E3C39.mlw
path: /opt/CAPEv2/storage/binaries/6259164b6cd25047189476100ab5109db986040c3137b6392636498bb7b452bc
crc32: B12F2A0F
md5: c48371c0f614e93e3c39ac96bfad6b8c
sha1: 67b6fc7a0815cbeb533a2144de3149a859752a2c
sha256: 6259164b6cd25047189476100ab5109db986040c3137b6392636498bb7b452bc
sha512: 9f7b903feccced6defedff03fef96eaac48d7d76233d88a0337c894cedfbbb6bf819048ef4897872cb33a032a8b4876882663f407007a637eca2ebd4586df830
ssdeep: 24576:J0FoDW9hddcEiXjG5NxnGBPSTJmc5VIH06iyLlelC:M/93DhGmzHIU6ig
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T152357B09FD814E61C87AAA3018EFF336C6305D5D6617D717AF5FAE20BA2B3505E4C289
sha3_384: 875c4144a62dd847482cbed77691214d2f45216ca86507cf2566dfbaf61cf04cce0adc9d705bfa5516e3d530a4c44cf4
ep_bytes: c7050c61510001000000e981fcffff90
timestamp: 2022-08-09 07:40:26

Version Info:
0: [No Data]

Malware.AI.377519932 also known as:

Lionic	Trojan.Win32.Stealer.12!c
MicroWorld-eScan	Gen:Variant.Fragtor.128210
FireEye	Generic.mg.c48371c0f614e93e
ALYac	Gen:Variant.Fragtor.128210
VIPRE	Gen:Variant.Fragtor.128210
Sangfor	Worm.Win32.Bingoml.Vrpd
K7AntiVirus	Trojan ( 0058f5441 )
Alibaba	Worm:Win32/Bingoml.e9f1eb43
K7GW	Trojan ( 0058f5441 )
CrowdStrike	win/malicious_confidence_60% (W)
BitDefenderTheta	Gen:NN.ZexaF.34592.gLW@aS!k63m
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (high confidence)
ESET-NOD32	a variant of Win32/Agent.OJD
APEX	Malicious
TrendMicro-HouseCall	TROJ_GEN.R002C0WHB22
Paloalto	generic.ml
Kaspersky	Trojan.Win32.Bingoml.fyan
BitDefender	Gen:Variant.Fragtor.128210
Avast	Win32:PWSX-gen [Trj]
Ad-Aware	Gen:Variant.Fragtor.128210
Emsisoft	Gen:Variant.Fragtor.128210 (B)
Zillya	Trojan.Bingoml.Win32.10433
TrendMicro	TROJ_GEN.R002C0WHB22
McAfee-GW-Edition	BehavesLike.Win32.Injector.th
Sophos	Mal/Generic-S
GData	Gen:Variant.Fragtor.128210
Google	Detected
Avira	WORM/Agent.uodjr
MAX	malware (ai score=86)
Antiy-AVL	Trojan/Generic.ASMalwS.8142
Microsoft	Trojan:Win32/Wacatac.B!ml
Cynet	Malicious (score: 100)
McAfee	GenericRXTX-AE!C48371C0F614
VBA32	BScope.TrojanRansom.Agent
Malwarebytes	Malware.AI.377519932
Ikarus	Worm.Win32.Agent
Fortinet	W32/PossibleThreat
AVG	Win32:PWSX-gen [Trj]
Cybereason	malicious.a0815c
Panda	Trj/Chgt.AD

How to remove Malware.AI.377519932?

Malware.AI.377519932 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X