Malware

How to remove “Malware.AI.3921020764”?

Malware Removal

The Malware.AI.3921020764 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.3921020764 virus can do?

  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • A process attempted to delay the analysis task.
  • Dynamic (imported) function loading detected
  • Performs HTTP requests potentially not found in PCAP.
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid
  • Attempts to modify proxy settings

How to determine Malware.AI.3921020764?



File Info:

name: 9FEC47A1247BB8D296DC.mlw
path: /opt/CAPEv2/storage/binaries/b5303e444d1e8ecbc302ffecee6b90bb7a2053929ab8fd86168c526a86e5f0a8
crc32: C39FD42D
md5: 9fec47a1247bb8d296dc9e5bf7439170
sha1: 43fbce1b0d1f9e9f6f7d87e328e4767a1c016658
sha256: b5303e444d1e8ecbc302ffecee6b90bb7a2053929ab8fd86168c526a86e5f0a8
sha512: b922981e76dc4a605a87e48e6afcc4b178dcd3a902bfec13f240be8f1da7dd1678865aba056151aa76bbd26f68d79bd7c04618aad1e6c0baf418090f4959d13f
ssdeep: 6144:Bampiccsn1T29/wKUED0e6kmhUKonlG59959VHEbUlfslwOMR9BAOzd2f+fsCg:BaUiccs1iVURk2cE959dEbUmlW3BnLg
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T1E5848D21BA41D472C17302304F68FBB625BDBA600F2596EF7BD81A6D5E701D16B31BA3
sha3_384: ba87e6c5a0f8269393afc8e16db9f3227790a91fa62a5982e69e583ff3042c318648a9f85f3cd68923aa8f4bbd592fd1
ep_bytes: e85e070000e987feffff6a0c68a82545
timestamp: 2021-01-27 08:06:43


Version Info:

0: [No Data]

Malware.AI.3921020764 also known as:

BkavW32.AIDetect.malware2
LionicTrojan.Win32.Agentb.4!c
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Mikey.129128
ALYacGen:Variant.Mikey.129128
CylanceUnsafe
SangforTrojan.Win32.Agentb.gen
K7AntiVirusTrojan ( 0046c5321 )
AlibabaTrojan:Win32/SpeedBit.28c5539e
K7GWTrojan ( 0046c5321 )
CrowdStrikewin/malicious_confidence_100% (W)
CyrenW32/ABRisk.JWMO-8780
ESET-NOD32a variant of Win32/Agent.UUS
APEXMalicious
Paloaltogeneric.ml
ClamAVWin.Trojan.Locky-9886722-0
KasperskyHEUR:Trojan.Win32.Agentb.gen
BitDefenderGen:Variant.Mikey.129128
AvastWin32:CrypterX-gen [Trj]
TencentMalware.Win32.Gencirc.11d1a003
Ad-AwareGen:Variant.Mikey.129128
SophosGeneric PUA ED (PUA)
DrWebTrojan.DownLoader41.24926
ZillyaTrojan.Agent.Win32.2496278
McAfee-GW-EditionBehavesLike.Win32.Generic.fh
Trapminemalicious.high.ml.score
FireEyeGeneric.mg.9fec47a1247bb8d2
EmsisoftGen:Variant.Mikey.129128 (B)
SentinelOneStatic AI – Suspicious PE
GDataGen:Variant.Mikey.129128
JiangminTrojan.Generic.cbsmx
AviraADWARE/SpeedBit.Gen7
ArcabitTrojan.Mikey.D1F868
MicrosoftTrojan:Win32/Sabsik.FL.B!ml
CynetMalicious (score: 100)
AhnLab-V3Trojan/Win.Generic.C4580041
McAfeeGenericRXAA-FA!9FEC47A1247B
MAXmalware (ai score=81)
VBA32Trojan.Agentb
MalwarebytesMalware.AI.3921020764
RisingTrojan.Agent!8.B1E (CLOUD)
IkarusTrojan.Win32.Agent
MaxSecureTrojan.Malware.300983.susgen
FortinetRiskware/Agent
BitDefenderThetaGen:NN.ZexaF.34742.xCX@a0ry6bmi
AVGWin32:CrypterX-gen [Trj]
Cybereasonmalicious.b0d1f9
PandaTrj/GdSda.A

How to remove Malware.AI.3921020764?

Malware.AI.3921020764 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment