Malware

Malware.AI.3782504837 removal instruction

Malware Removal

The Malware.AI.3782504837 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.3782504837 virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Sample contains Overlay data
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX
  • Authenticode signature is invalid

How to determine Malware.AI.3782504837?



File Info:

name: 793A7332032D1D118BF5.mlw
path: /opt/CAPEv2/storage/binaries/9aeb069b653f794d413030c767f6142ca8d8d934af04656cd36375244336384f
crc32: 3D0C894C
md5: 793a7332032d1d118bf5817f9ceb3b01
sha1: a7296cc8621383c5bbc249956fe05f28c2f4c6fc
sha256: 9aeb069b653f794d413030c767f6142ca8d8d934af04656cd36375244336384f
sha512: 117ab0ffe1049e915ed994c93e8a2fd9c79e1fdd8bd24e9feace15eb54925c0264e24c51b0846689aa9b657be9757b3f6bf806b10599c5d1c1afaa4e206cce0c
ssdeep: 3072:7Kjntrgpq7EB8Plv02Ms8Zy4ZSptu8gJq3L1iEfVfj:7Kjt1jc2MpR8Kq7YER
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1D6E30195FA73A412E280E83DC843C31221A47E3E95677E3225857E476E331F529326FA
sha3_384: 6e4756d7b3308948e25a5ec0d178f6e5c32b0b6ffea395e5443a717946df216fbeb0d2c1630127172a1a9cf732f6963b
ep_bytes: 60be002045008dbe00f0faff57eb0b90
timestamp: 2007-01-12 10:04:58


Version Info:

Translation: 0x0409 0x04b0
Comments: Microsoft Corporation
CompanyName: File Folder
ProductName:  
FileVersion: 1.00
ProductVersion: 1.00
InternalName: FILE FOLDER
OriginalFilename: FILE FOLDER.exe

Malware.AI.3782504837 also known as:

tehtrisGeneric.Malware
MicroWorld-eScanGeneric.Malware.LMWV3g.10A2BB18
ClamAVWin.Worm.Moonlight-9775620-0
ALYacGeneric.Malware.LMWV3g.10A2BB18
CylanceUnsafe
ZillyaWorm.VB.Win32.63365
SangforTrojan.Win32.Save.a
K7AntiVirusTrojan ( 0040f6141 )
K7GWTrojan ( 0040f6141 )
Cybereasonmalicious.2032d1
BaiduWin32.Worm.VB.a
CyrenW32/Noon.K.gen!Eldorado
SymantecW32.Lunalight@mm
Elasticmalicious (moderate confidence)
ESET-NOD32Win32/NoonLight.Y
APEXMalicious
CynetMalicious (score: 100)
KasperskyEmail-Worm.Win32.VB.co
BitDefenderGeneric.Malware.LMWV3g.10A2BB18
NANO-AntivirusTrojan.Win32.VB.foifdq
AvastWin32:Malware-gen
TencentMalware.Win32.Gencirc.10d0c284
Ad-AwareGeneric.Malware.LMWV3g.10A2BB18
EmsisoftGeneric.Malware.LMWV3g.10A2BB18 (B)
ComodoPacked.Win32.MUPX.Gen@24tbus
F-SecureTrojan.TR/Crypt.FKM.Gen
DrWebTrojan.DownLoader6.64360
VIPREGeneric.Malware.LMWV3g.10A2BB18
TrendMicroWORM_MOONLIGHT.F
McAfee-GW-EditionBehavesLike.Win32.Trojan.cc
FireEyeGeneric.mg.793a7332032d1d11
SophosW32/Bobandy-I
SentinelOneStatic AI – Malicious PE
GDataGeneric.Malware.LMWV3g.10A2BB18
JiangminTrojan.NSIS.Inject.a
AviraTR/Crypt.FKM.Gen
MAXmalware (ai score=85)
Antiy-AVLVirus/Win32.VB
ArcabitGeneric.Malware.LMWV3g.10A2BB18
ZoneAlarmEmail-Worm.Win32.VB.co
MicrosoftTrojan:Win32/Wacatac.B!ml
GoogleDetected
AhnLab-V3Worm/Win.VB.R526135
Acronissuspicious
McAfeeW32/MoonLight.worm.c
VBA32TScope.Trojan.VB
MalwarebytesMalware.AI.3782504837
TrendMicro-HouseCallWORM_MOONLIGHT.F
RisingWorm.VBInjectEx!1.99E6 (CLASSIC)
YandexI-Worm.VB.ZUF
IkarusTrojan.Win32.Patched
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/Moonlight.B!worm
BitDefenderThetaAI:Packer.595B7E2B1D
AVGWin32:Malware-gen
PandaW32/Moonlight.P.worm
CrowdStrikewin/malicious_confidence_100% (W)

How to remove Malware.AI.3782504837?

Malware.AI.3782504837 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment