What is “Malware.AI.3811278812”?

The Malware.AI.3811278812 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.3811278812 virus can do?

The binary contains an unknown PE section name indicative of packing
The binary likely contains encrypted or compressed data.
Authenticode signature is invalid

How to determine Malware.AI.3811278812?


File Info:
name: 3D5B4A8609E75BB6C630.mlw
path: /opt/CAPEv2/storage/binaries/5cd26fc9d775b2e1678ed4acc6a41fd2c18158d7f0e4879c2f07d7eb812f8089
crc32: 151E8B2B
md5: 3d5b4a8609e75bb6c630144d39556bc5
sha1: 6ada6d1f0aa90d9de1088c96bacb351ffa4d39d3
sha256: 5cd26fc9d775b2e1678ed4acc6a41fd2c18158d7f0e4879c2f07d7eb812f8089
sha512: b794c5af8ff3feb552b815ef7e1bedce01214cf77a84ec53c7c838e2d1047a3f691fa6ff0b0edc19f0a6d86128d636b09c8fbdbb74dedf412021b24f963ad537
ssdeep: 12288:Go9he7o9he3swvwuTfN4uUODYTDakaTDak:r9heE9he31vjfNFw/an/a
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T117B4AF4770F086B1C2790A7C4CAA67048B6BBD742E74542E31983ADD5C393D89A2B7DF
sha3_384: 66a92202af49765cc3ef502081a12ed4ab747df8219b2e9c7a8fe39ebd4d3cdbf431c202f9da3c5f9bda369c137d02d0
ep_bytes: 558bec83c4f4b8243a4700e80c14f9ff
timestamp: 1992-06-19 22:22:17

Version Info:
0: [No Data]

Malware.AI.3811278812 also known as:

Bkav	W32.AIDetect.malware2
Elastic	malicious (high confidence)
MicroWorld-eScan	Gen:Variant.Application.Bundler.DealPly.742
FireEye	Generic.mg.3d5b4a8609e75bb6
CAT-QuickHeal	PUA.IgenericIH.S11976838
ALYac	Gen:Variant.Application.Bundler.DealPly.742
Zillya	Adware.Agent.Win32.169049
CrowdStrike	win/malicious_confidence_90% (D)
BitDefenderTheta	AI:Packer.E12CE6DA21
Cyren	W32/DealPly.BK.gen!Eldorado
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win32/DealPly.XL potentially unwanted
BitDefender	Gen:Variant.Application.Bundler.DealPly.742
Avast	Win32:Adware-gen [Adw]
Ad-Aware	Gen:Variant.Application.Bundler.DealPly.742
Sophos	Generic ML PUA (PUA)
McAfee-GW-Edition	BehavesLike.Win32.AdwareDealPly.hh
Emsisoft	Gen:Variant.Application.Bundler.DealPly.742 (B)
SentinelOne	Static AI – Malicious PE
GData	Gen:Variant.Application.Bundler.DealPly.742
MAX	malware (ai score=70)
Antiy-AVL	Trojan/Generic.ASMalwS.1EA2432
Arcabit	Trojan.Application.Bundler.DealPly.742
Microsoft	Trojan:Win32/Sabsik.FL.B!ml
Cynet	Malicious (score: 100)
AhnLab-V3	Adware/Win.Generic.R447442
Acronis	suspicious
McAfee	GenericRXAA-AA!3D5B4A8609E7
Malwarebytes	Malware.AI.3811278812
APEX	Malicious
Yandex	PUA.Agent!s2DALBrhk2I
Ikarus	Backdoor.Win32.MiniCommander
AVG	Win32:Adware-gen [Adw]
Panda	Trj/GdSda.A
MaxSecure	Trojan.Malware.300983.susgen

How to remove Malware.AI.3811278812?

Malware.AI.3811278812 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X