Malware

Malware.AI.3910449943 removal tips

Malware Removal

The Malware.AI.3910449943 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.3910449943 virus can do?

  • Executed a command line with /C or /R argument to terminate command shell on completion which can be used to hide execution
  • Reads data out of its own binary image
  • Drops a binary and executes it
  • Authenticode signature is invalid
  • A ping command was executed with the -n argument possibly to delay analysis
  • Uses Windows utilities for basic functionality
  • Deletes executed files from disk
  • Uses suspicious command line tools or Windows utilities

How to determine Malware.AI.3910449943?



File Info:

name: 78F937255A9F1D312ADE.mlw
path: /opt/CAPEv2/storage/binaries/baf5698e00eac5955de4b74f509d121e0457b302a2cd9c97a786b693c1935565
crc32: 19A39ADD
md5: 78f937255a9f1d312adef0825e282651
sha1: a529ad49532f97145d088514c4b6b5d55107968d
sha256: baf5698e00eac5955de4b74f509d121e0457b302a2cd9c97a786b693c1935565
sha512: ec741b1e7ee3062a484aaa72799789b1918c094f41393f812249dace0e8fa87855eafd0bdfd51e967b8a5a53c9f197bf8d37b0b2837851d8151516faf9f8d4e5
ssdeep: 384:RWbEjntUx9bp8g09RXjXz7XjCWwqK8Wzz8WW5bIwHPAMZ2qw5fe6Kj35b:wboubbk9xjXvKBBW5bPAvZ5e6yJ
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T199C28D57B6C08831DA9506B1D6BA99BC45BBBB303D25E5818B20F51719F3090FE1EE8E
sha3_384: e6c9f23dbb96c8106b9203fa1d65226e99f2c519412cf418e33c2aa747160cab90ad4694174dfec3c963138ae38fede6
ep_bytes: e8b1020000e974feffff558becff7508
timestamp: 2020-12-13 23:46:04


Version Info:

0: [No Data]

Malware.AI.3910449943 also known as:

Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Fragtor.108967
ClamAVWin.Malware.Fugrafa-9950512-0
CAT-QuickHealTrojan.Stealer.S28360516
McAfeeGenericRXNV-VM!78F937255A9F
MalwarebytesMalware.AI.3910449943
ZillyaTrojan.SelfDel.Win32.65008
SangforSuspicious.Win32.Save.a
K7AntiVirusPassword-Stealer ( 005937271 )
AlibabaTrojanPSW:Win32/Fragtor.d2a36508
K7GWPassword-Stealer ( 005937271 )
CrowdStrikewin/malicious_confidence_100% (W)
CyrenW32/Agent.ENB.gen!Eldorado
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/PSW.Agent.OOO
APEXMalicious
AvastWin32:Malware-gen
CynetMalicious (score: 100)
KasperskyHEUR:Trojan.Win32.SelfDel.pef
BitDefenderGen:Variant.Fragtor.108967
NANO-AntivirusTrojan.Win32.SelfDel.jpepdv
SUPERAntiSpywareTrojan.Agent/Gen-Stealer
TencentTrojan.Win32.Selfdel.xb
TACHYONTrojan/W32.Fugrafa.26112
EmsisoftGen:Variant.Fragtor.108967 (B)
F-SecureHeuristic.HEUR/AGEN.1318539
DrWebTrojan.MulDrop20.10627
VIPREGen:Variant.Fragtor.108967
TrendMicroTROJ_GEN.R002C0DLO22
McAfee-GW-EditionBehavesLike.Win32.Generic.mh
FireEyeGeneric.mg.78f937255a9f1d31
SophosTroj/PWS-CMJ
SentinelOneStatic AI – Suspicious PE
GDataGen:Variant.Fragtor.108967
JiangminTrojan.Selfdel.rft
AviraHEUR/AGEN.1318539
Antiy-AVLGrayWare/Win32.SelfDef.a
ArcabitTrojan.Fragtor.D1A9A7
ZoneAlarmHEUR:Trojan.Win32.SelfDel.pef
MicrosoftTrojan:Win32/Fragtor.EL!MTB
GoogleDetected
AhnLab-V3Malware/Win.Reputation.R496203
Acronissuspicious
VBA32BScope.Trojan.Occamy
ALYacGen:Variant.Fragtor.108967
MAXmalware (ai score=87)
DeepInstinctMALICIOUS
Cylanceunsafe
TrendMicro-HouseCallTROJ_GEN.R002C0DLO22
RisingStealer.Agent!1.DE3E (CLASSIC)
IkarusTrojan.DelFiles
MaxSecureTrojan.Malware.74774368.susgen
FortinetW32/SelfDef.26C0!tr
AVGWin32:Malware-gen
PandaTrj/Genetic.gen

How to remove Malware.AI.3910449943?

Malware.AI.3910449943 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment