Malware.AI.3867761617 (file analysis)

The Malware.AI.3867761617 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Malware.AI.3867761617 virus can do?

Unconventionial language used in binary resources: Russian
The binary likely contains encrypted or compressed data.
Network activity detected but not expressed in API logs
Anomalous binary characteristics

Related domains:

z.whorecord.xyz

a.tomx.xyz

How to determine Malware.AI.3867761617?


File Info:
crc32: 4369B0E1
md5: b759f434bdb1b2f6a880d7ae1fe88ad7
name: B759F434BDB1B2F6A880D7AE1FE88AD7.mlw
sha1: 1b84a7d0418e0875d3051d4c2dea8539f871f95a
sha256: 236b5bee59e1ac3b117a232b11edcbc93c6e0ac04c6d783cd0d8fc151f586c29
sha512: 2775c8010b6aaf2e28b939fff7c88bbdafaad507d396e805cdc51646947de6d059b4cbac4910996e1c9632401464caf0a9a04098614d0c700f284d01988dff8d
ssdeep: 24576:BuS6dek0GIx8WuqjK4VRIgNpkLTttsCn:gSXUM8WuqG4VpgTtz
type: PE32 executable (GUI) Intel 80386 (stripped to external PDB), for MS Windows

Version Info:
LegalCopyright: Copyright (C) 1995-2009 Trend Micro Incorporated. All rights reserved.
InternalName: UfIfAvIm
FileVersion: 6.2.6.8
CompanyName: NAVITELxae
1: Copyright (C) Trend Micro Inc.
ProductVersion: 1.6.6.8
Translation: 0x0409 0x04b0

Malware.AI.3867761617 also known as:

Bkav	W32.AIDetect.malware1
K7AntiVirus	Trojan ( 00540ed61 )
Elastic	malicious (high confidence)
Cynet	Malicious (score: 100)
ALYac	Trojan.Agent.DGJC
Cylance	Unsafe
Zillya	Trojan.GenKryptik.Win32.19125
Sangfor	Trojan.Win32.Save.a
CrowdStrike	win/malicious_confidence_100% (D)
Alibaba	Trojan:Win32/Kryptik.59e17b77
K7GW	Trojan ( 0053ea101 )
Cybereason	malicious.4bdb1b
Cyren	W32/Nymaim.U.gen!Eldorado
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win32/Kryptik.GLQI
APEX	Malicious
Avast	Win32:TrojanX-gen [Trj]
Kaspersky	UDS:Trojan.Win32.Generic
BitDefender	Trojan.Agent.DGJC
NANO-Antivirus	Trojan.Win32.Regsup.fjauzn
MicroWorld-eScan	Trojan.Agent.DGJC
Tencent	Malware.Win32.Gencirc.10b25c73
Ad-Aware	Trojan.Agent.DGJC
Sophos	Generic PUA BL (PUA)
Comodo	TrojWare.Win32.Regsup.NR@7wfx07
BitDefenderTheta	Gen:NN.ZexaF.34294.Xm0@aizn55oc
VIPRE	Trojan.Win32.Generic!BT
McAfee-GW-Edition	BehavesLike.Win32.Trojan.bc
FireEye	Generic.mg.b759f434bdb1b2f6
Emsisoft	Trojan.Agent.DGJC (B)
SentinelOne	Static AI – Malicious PE
Jiangmin	Trojan.Regsup.ayz
Avira	TR/AD.Nymaim.vfr
Antiy-AVL	Trojan/Generic.ASMalwS.287A77B
Microsoft	Trojan:Win32/Occamy.C
Arcabit	Trojan.Agent.DGJC
GData	Trojan.Agent.DGJC
TACHYON	Trojan/W64.Regsup.808448
AhnLab-V3	Malware/RL.Generic.R242557
Acronis	suspicious
McAfee	Trojan-FQCK!B759F434BDB1
VBA32	BScope.Trojan.Regsup
Malwarebytes	Malware.AI.3867761617
Panda	Trj/Genetic.gen
Rising	Downloader.Nymaim!1.AA57 (CLASSIC)
Yandex	Trojan.Kryptik!uznRaiUYD0I
Ikarus	Trojan.Win32.Crypt
eGambit	Unsafe.AI_Score_100%
Fortinet	W32/Kryptik.GMQK!tr
AVG	Win32:TrojanX-gen [Trj]
Paloalto	generic.ml

How to remove Malware.AI.3867761617?

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

Malware.AI.3867761617 (file analysis)