How to remove “Malware.AI.3894420320”?

The Malware.AI.3894420320 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.3894420320 virus can do?

CAPE extracted potentially suspicious content
Authenticode signature is invalid
Binary compilation timestomping detected

How to determine Malware.AI.3894420320?


File Info:
name: E37C26F1DFDBE24BAC04.mlw
path: /opt/CAPEv2/storage/binaries/796eb51933e02be6f6d4d57787374aebb34de646c87a9735987aac77c7b76981
crc32: 464E9459
md5: e37c26f1dfdbe24bac0441cd54892b0d
sha1: 45407bd4a90850db62c61c79e4d1184cf5f23e72
sha256: 796eb51933e02be6f6d4d57787374aebb34de646c87a9735987aac77c7b76981
sha512: a5af4fbf7261dfbccf80de359203db9a078fe4d6e45e4af38f36565dc57ccfa060b19526d705033ce08844ad93bf9f1a68faa9e2c1e1a6fa2e249cec588c23d7
ssdeep: 6144:HECWqhjj/Ddjj/ujj/ujj/myoS9mjbxbjj/:HECWqhjj/Rjj/ujj/ujj/1ooMbjj/
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T16D941E79208EA62EDBAC077503C738F41D6539174FA48BE929FAAF6A4491FCC520C537
sha3_384: c37a96fe622b3344cd81971589dbbd846c3e84d012c11dc2ca2fdf6b28ef488ecc8b6649d623fbfdebb3f23581d6244c
ep_bytes: ff250020400000000000000000000000
timestamp: 2071-11-20 08:42:58

Version Info:
Translation: 0x0000 0x04b0
Comments: sfConfig Updater
CompanyName: 
FileDescription: sfConfig Updater
FileVersion: 1.0.0.0
InternalName: sfConfig Updater.exe
LegalCopyright: Copyright ©  2024
LegalTrademarks: 
OriginalFilename: sfConfig Updater.exe
ProductName: sfConfig Updater
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

Malware.AI.3894420320 also known as:

Bkav	W32.AIDetectMalware.CS
MicroWorld-eScan	IL:Trojan.MSILZilla.119297
FireEye	IL:Trojan.MSILZilla.119297
Skyhigh	Artemis!Trojan
McAfee	Artemis!E37C26F1DFDB
Cylance	unsafe
VIPRE	IL:Trojan.MSILZilla.119297
Sangfor	Trojan.Win32.Agent.V5pk
Symantec	ML.Attribute.HighConfidence
TrendMicro-HouseCall	TROJ_GEN.R002H09DK24
BitDefender	IL:Trojan.MSILZilla.119297
Avast	Win32:TrojanX-gen [Trj]
Emsisoft	IL:Trojan.MSILZilla.119297 (B)
SentinelOne	Static AI – Suspicious PE
Google	Detected
Antiy-AVL	GrayWare[AdWare]/Win32.Puwaders
Microsoft	Trojan:Win32/Acll
Arcabit	IL:Trojan.MSILZilla.D1D201
GData	IL:Trojan.MSILZilla.119297
AhnLab-V3	Trojan/Win.Generic.C5614205
ALYac	IL:Trojan.MSILZilla.119297
MAX	malware (ai score=83)
Malwarebytes	Malware.AI.3894420320
Panda	Trj/Chgt.AD
Ikarus	Trojan.IL.MSILZilla
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	PossibleThreat
AVG	Win32:TrojanX-gen [Trj]
DeepInstinct	MALICIOUS

How to remove Malware.AI.3894420320?

Malware.AI.3894420320 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X