How to remove “Malware.AI.3846322700”?

The Malware.AI.3846322700 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.3846322700 virus can do?

Dynamic (imported) function loading detected
The binary likely contains encrypted or compressed data.
Authenticode signature is invalid

How to determine Malware.AI.3846322700?


File Info:
name: 1C4DCF34BCDCB1C434E7.mlw
path: /opt/CAPEv2/storage/binaries/a41d7dda63c91ce7c1c51d0edbb5bac3061992adcc50d1dd0a194227a1be69c3
crc32: 2FF363D4
md5: 1c4dcf34bcdcb1c434e737373b2b5d0b
sha1: 0e35584dc1074f5929957e167fd6d933835b6359
sha256: a41d7dda63c91ce7c1c51d0edbb5bac3061992adcc50d1dd0a194227a1be69c3
sha512: 4c77b8ded6079a829fcd46f93fb43a02938a8834877c5f2426c890d63a1d8e02e8036655704edcb645af1df99b790303f3147ba9c5db858feaf6a17b06e2fd41
ssdeep: 49152:t6btL0vawoyQ0snMrJ7O25YaZ/d3xJ/aWmPeZyp:tQLCawo0sMrJ/59l3xJ/aWEeZk
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T172952304A292DB14D46A3BF5D8B89346467BBE51073A920E32BD345DBF72277CE112CE
sha3_384: eb39188e5d52d24ffc14126dc3e0e8e94df683cca97db3510a20e01c2ed4e33cc07eba0f63c126fcfcdfbbfeafdf170f
ep_bytes: ff250020400000000000000000000000
timestamp: 2020-10-07 20:57:13

Version Info:
Translation: 0x0000 0x04b0
Comments: Official Dominator Uplauncher
CompanyName: Dominator
FileDescription: Dominator Uplauncher
FileVersion: 1.0.1
InternalName: Uplauncher.exe
LegalCopyright: Copyright ©  2015 Dominator - Tous droits réservés
LegalTrademarks: Dominator
OriginalFilename: Uplauncher.exe
ProductName: Dominator Uplauncher
ProductVersion: 1.0.1
Assembly Version: 1.0.1.0

Malware.AI.3846322700 also known as:

Lionic	Trojan.MSIL.Agent.a!c
MicroWorld-eScan	Trojan.GenericKD.38907923
FireEye	Trojan.GenericKD.38907923
CAT-QuickHeal	Trojan.MFC.S24736267
McAfee	GenericRXAA-FA!1C4DCF34BCDC
Cylance	Unsafe
Sangfor	Trojan.MSIL.Agent.gen
K7AntiVirus	Riskware ( 0040eff71 )
Alibaba	TrojanDownloader:Win32/DropperX.e6523a18
K7GW	Riskware ( 0040eff71 )
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of MSIL/GameTool.DM potentially unsafe
Kaspersky	HEUR:Trojan-Downloader.MSIL.Agent.gen
BitDefender	Trojan.GenericKD.38907923
Avast	Win32:DropperX-gen [Drp]
Ad-Aware	Trojan.GenericKD.38907923
Emsisoft	Trojan.GenericKD.38907923 (B)
TrendMicro	TROJ_GEN.R002C0PK821
McAfee-GW-Edition	Artemis!Trojan
Sophos	Mal/Generic-S
Ikarus	Trojan-Downloader.Agent
GData	Trojan.GenericKD.38907923
Jiangmin	TrojanDownloader.MSIL.afix
Avira	TR/Dldr.Agent.fyypo
Gridinsoft	Ransom.Win32.Wacatac.sa
ViRobot	Trojan.Win32.Z.Agent.1911808
ZoneAlarm	HEUR:Trojan-Downloader.MSIL.Agent.gen
Microsoft	Trojan:Win32/Wacatac.B!ml
Cynet	Malicious (score: 99)
AhnLab-V3	Trojan/Win.YP.C4758873
MAX	malware (ai score=85)
Malwarebytes	Malware.AI.3846322700
TrendMicro-HouseCall	TROJ_GEN.R002C0PK821
SentinelOne	Static AI – Suspicious PE
Fortinet	PossibleThreat
AVG	Win32:DropperX-gen [Drp]
Panda	Trj/GdSda.A

How to remove Malware.AI.3846322700?

Malware.AI.3846322700 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X