Malware

Should I remove “Malware.AI.3922194906”?

Malware Removal

The Malware.AI.3922194906 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.3922194906 virus can do?

  • Dynamic (imported) function loading detected
  • CAPE extracted potentially suspicious content
  • Authenticode signature is invalid
  • Binary compilation timestomping detected

How to determine Malware.AI.3922194906?



File Info:

name: 17CC90906EC5A67490EF.mlw
path: /opt/CAPEv2/storage/binaries/6544d70b4dc761e67030852015667672cb8a98540d5466c412abd08e2b90329a
crc32: 310D6261
md5: 17cc90906ec5a67490efe31231c2e596
sha1: 6ba44132ba8ef2602a9377ee2a6adb33595891fa
sha256: 6544d70b4dc761e67030852015667672cb8a98540d5466c412abd08e2b90329a
sha512: 1a8df132ea53964006f9f83993f30ad889a3cfdff1e69f23f271e3ebb8e95866cf0441621f1b019dad601851da1b9b8c066adcae921857633289b16b97e9bcb4
ssdeep: 384:2cFfiDqR/mjoTCgwLQRcc8HV0EGmw4iScBhf/QRR+brO/gyqD5ILLwQXrn3p0C6Z:2cFfpxTCri
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1C2C507372A987BA0B37363EBE6B5CF723F24269177AA71B495327C1CB5811495E0070B
sha3_384: 29452ce029c80ab0af3e0a5bb448cb7e6a7feb71f8df597d538ee9e45b8e8e1f8b0a9d862a66b23b8ce89cd2fefcdf3d
ep_bytes: ff250020400000000000000000000000
timestamp: 2080-10-16 13:16:31


Version Info:

Comments: 鼻齯鼫鼩鼬鼨齛齤鼾齞鼨齚齙齚
CompanyName: 鼻齯鼫鼩鼬鼨齛齤鼾齞鼨齚齙齚 Inc.
FileDescription: 鼻齯鼫鼩鼬鼨齛齤鼾齞鼨齚齙齚
FileVersion: 5.419.897.996
LegalCopyright: All Rights Reserved
InternalName: 鼻齯鼫鼩鼬鼨齛齤鼾齞鼨齚齙齚.exe
LegalTrademarks: 鼻齯鼫鼩鼬鼨齛齤鼾齞鼨齚齙齚
OriginalFilename: 鼻齯鼫鼩鼬鼨齛齤鼾齞鼨齚齙齚.exe
ProductName: 鼻齯鼫鼩鼬鼨齛齤鼾齞鼨齚齙齚
ProductVersion: 5.419.897.996
Assembly Version: 5.419.897.996
Translation: 0x0000 0x0514

Malware.AI.3922194906 also known as:

BkavW32.AIDetectNet.01
LionicTrojan.MSIL.PowerShell.4!c
MicroWorld-eScanIL:Trojan.MSILZilla.11267
ALYacIL:Trojan.MSILZilla.11267
CylanceUnsafe
SangforTrojan.Win32.Save.a
K7AntiVirusTrojan ( 005809b01 )
AlibabaTrojan:MSIL/PowerShell.5e7269d4
K7GWTrojan ( 005809b01 )
CrowdStrikewin/malicious_confidence_100% (W)
SymantecML.Attribute.HighConfidence
Elasticmalicious (high confidence)
ESET-NOD32a variant of MSIL/Kryptik.ABHL
APEXMalicious
Paloaltogeneric.ml
KasperskyHEUR:Trojan.MSIL.PowerShell.gen
BitDefenderIL:Trojan.MSILZilla.11267
AvastWin32:RATX-gen [Trj]
TencentMsil.Trojan.Msilheracles.Eaee
Ad-AwareIL:Trojan.MSILZilla.11267
EmsisoftIL:Trojan.MSILZilla.11267 (B)
F-SecureHeuristic.HEUR/AGEN.1216562
DrWebTrojan.PackedNET.771
ZillyaTrojan.Kryptik.Win32.3668752
McAfee-GW-EditionGenericRXOV-KC!17CC90906EC5
FireEyeGeneric.mg.17cc90906ec5a674
SophosMal/Generic-S
IkarusTrojan.Inject
GDataIL:Trojan.MSILZilla.11267
JiangminTrojan.PSW.MSIL.bpmp
AviraHEUR/AGEN.1216562
MAXmalware (ai score=83)
Antiy-AVLTrojan/Generic.ASMalwS.3537115
ArcabitIL:Trojan.MSILZilla.D2C03
MicrosoftTrojan:Win32/Wacatac.B!ml
CynetMalicious (score: 100)
AhnLab-V3Trojan/Win.Generic.C4513202
Acronissuspicious
McAfeeGenericRXOV-KC!17CC90906EC5
VBA32TScope.Trojan.MSIL
MalwarebytesMalware.AI.3922194906
RisingMalware.Obfus/MSIL@AI.98 (RDM.MSIL:tUmX0t1NVeNrwBQXBCi9pg)
YandexTrojan.Kryptik!E1+263zIApE
SentinelOneStatic AI – Malicious PE
MaxSecureTrojan.Malware.74168641.susgen
FortinetMSIL/GenKryptik.FFVP!tr
BitDefenderThetaGen:NN.ZemsilF.34606.Ko0@aebLcwgi
AVGWin32:RATX-gen [Trj]
Cybereasonmalicious.2ba8ef
PandaTrj/GdSda.A

How to remove Malware.AI.3922194906?

Malware.AI.3922194906 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment