Malware

Malware.AI.393484506 removal guide

Malware Removal

The Malware.AI.393484506 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.393484506 virus can do?

  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • Possible date expiration check, exits too soon after checking local time
  • A process created a hidden window
  • Drops a binary and executes it
  • Authenticode signature is invalid
  • Installs itself for autorun at Windows startup
  • Creates a copy of itself
  • Anomalous binary characteristics

How to determine Malware.AI.393484506?



File Info:

name: 38465245DC2B7795DE38.mlw
path: /opt/CAPEv2/storage/binaries/5f240dac261cb450ce31f393266a9653ca3650a6d495a048f5e012bc9e6bc261
crc32: C549E822
md5: 38465245dc2b7795de3800c0f9cd1d42
sha1: 39ba0122bb9c32430875b53c2b4962bf42f00be9
sha256: 5f240dac261cb450ce31f393266a9653ca3650a6d495a048f5e012bc9e6bc261
sha512: e7c4c4bd77fe67fb1962a71cb827307844d965c14993ae0008507d6ebb5228ca7dce4003fdb791151a5cc4d3fd80238e36feae2f87be0d152192c956b307bf3c
ssdeep: 12288:vkK+aCOidpQwdf2LIpMxnON/Ia7RTOMVpAq+VuShMcIUpJ96AqW7V/yuiKmkt3MT:6aC3SacIUpJ96AqW7V/yuJmkt3Ma2h
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1E1941A30FAC2D43AE86342F59BEEA696841CBD741B0524C7F3F959A915E45F23A30E13
sha3_384: 48e3477d21ebef89df0ddccc753a6651139ad2f77df21836900a291a97318048a73a82d5b3b6e5847a48b200ae0a431e
ep_bytes: e8f7050000e936fdffff6a1468c0d445
timestamp: 2012-09-25 15:05:49


Version Info:

Comments:                                                                                                                                                                                                                                                                    
CompanyName: Microsoft Corporation
FileDescription: IE Per User Active Setup Uninstall Utility
FileVersion: 7.00.5730.13
InternalName: IEUDINIT
LegalCopyright: ᄅ Microsoft Corporation. All rights reserved.
LegalTrademarks: ᄅ Microsoft Corporation. All rights reserved.
OriginalFilename: IEUDINIT.EXE
PrivateBuild: IEUDINIT.EXE
ProductName: Windowsᆴ Internet Explorer
ProductVersion: 7.00.5730.13
SpecialBuild: 7.00.5730.13
Translation: 0x0409 0x04b0

Malware.AI.393484506 also known as:

Elasticmalicious (high confidence)
MicroWorld-eScanGen:Heur.Naffy.1
FireEyeGeneric.mg.38465245dc2b7795
CAT-QuickHealTrojan.Mutopy.A
ALYacGen:Heur.Naffy.1
MalwarebytesMalware.AI.393484506
ZillyaTrojan.Rodecap.Win32.2482
CrowdStrikewin/malicious_confidence_80% (W)
BitDefenderGen:Heur.Naffy.1
K7GWRiskware ( 0040eff71 )
Cybereasonmalicious.5dc2b7
BitDefenderThetaGen:NN.ZexaF.34114.Au0@ay4mc8fi
CyrenW32/Troj_Obfusc.AI.gen!Eldorado
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/Rodecap.AW
AvastWin32:Malware-gen
ClamAVWin.Trojan.Multi-6413508-0
KasperskyTrojan-Ransom.Win32.Blocker.baiz
Ad-AwareGen:Heur.Naffy.1
TACHYONTrojan/W32.Blocker.440320
EmsisoftGen:Heur.Naffy.1 (B)
ComodoTrojWare.Win32.Agent.AWR@4ri3wg
F-SecureTrojan.TR/Mutopy.aj.1
DrWebTrojan.DownLoader8.58970
McAfee-GW-EditionGenericRXGI-SK!38465245DC2B
SophosML/PE-A + Troj/Dapato-A
GDataGen:Heur.Naffy.1
AviraTR/Mutopy.aj.1
Antiy-AVLTrojan[Ransom]/Win32.Blocker
MicrosoftTrojan:Win32/Mutopy.A
CynetMalicious (score: 100)
AhnLab-V3Downloader/Win32.Dapato.R38757
McAfeeGenericRXGI-SK!38465245DC2B
MAXmalware (ai score=89)
VBA32Hoax.Blocker
CylanceUnsafe
APEXMalicious
RisingMalware.Heuristic!ET#100% (RDMK:cmRtazpI9DV/wC6JNExBz9yZ3Fjb)
YandexTrojan.GenAsa!memadJysHus
FortinetW32/Rodecap.AW!tr
AVGWin32:Malware-gen
PandaTrj/Genetic.gen

How to remove Malware.AI.393484506?

Malware.AI.393484506 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment