What is “Malware.AI.3802333144”?

The Malware.AI.3802333144 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.3802333144 virus can do?

Sample contains Overlay data
Reads data out of its own binary image
Unconventionial language used in binary resources: Russian
The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid

How to determine Malware.AI.3802333144?


File Info:
name: C4FE312D4ECCD2A3BDBF.mlw
path: /opt/CAPEv2/storage/binaries/cea3bed333279cb4af22db5af369ecce8c912c89e75f60e7141901ac042a4e9f
crc32: 125D39B0
md5: c4fe312d4eccd2a3bdbfeb2a28e13153
sha1: 444b76b758664e691cb69dc149668f7c6784459f
sha256: cea3bed333279cb4af22db5af369ecce8c912c89e75f60e7141901ac042a4e9f
sha512: 1a29e665fa54da24edd340ed0dc334becab55b6ba156a599026b9e2c35291d576f8d3c311fcd7588cc420cd612c4a94534343363799f83765a27ed1a63ca4890
ssdeep: 12288:+ToPWBv/cpGrU3yDT+tjISr/X0QLXeiSrkopr:+TbBv5rUlIeX0Q7eiSIer
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T19794D003BDD1D9B2C41208331B696B51697DBE302F668EDBB3D42E1DEA211D0E7317A6
sha3_384: 448097b59af098732a34b930eea2b480a7eed8dfd762c7a16e12cfbf4981c1d97d1244260e0959c56c4998668e07f3f3
ep_bytes: e866050000e978feffffcccccccccccc
timestamp: 2022-03-03 13:15:57

Version Info:
0: [No Data]

Malware.AI.3802333144 also known as:

Bkav	W32.AIDetectMalware
Lionic	Trojan.Win32.Generic.4!c
Elastic	malicious (high confidence)
FireEye	Generic.mg.c4fe312d4eccd2a3
Skyhigh	BehavesLike.Win32.Generic.gc
Cylance	unsafe
Alibaba	Trojan:Win32/Generic.7c652f0f
CrowdStrike	win/malicious_confidence_90% (W)
Cynet	Malicious (score: 100)
APEX	Malicious
ClamAV	Win.Packed.Bladabindi-10017056-0
Sophos	Generic ML PUA (PUA)
Ikarus	Trojan.Rasftuby
McAfee	RDN/Generic.sfx
Malwarebytes	Malware.AI.3802333144
TrendMicro-HouseCall	TROJ_GEN.R002H06L723
MaxSecure	Trojan.Malware.300983.susgen
DeepInstinct	MALICIOUS

How to remove Malware.AI.3802333144?

Malware.AI.3802333144 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X