Malware.AI.3950811604 information

The Malware.AI.3950811604 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.3950811604 virus can do?

SetUnhandledExceptionFilter detected (possible anti-debug)
The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid

How to determine Malware.AI.3950811604?


File Info:
name: A3B5F729A8F473C7D27B.mlw
path: /opt/CAPEv2/storage/binaries/9bc16ae8cf8af631c8f7ea02be42fe9153442290457079641be25c079be1fe6f
crc32: 46F84D76
md5: a3b5f729a8f473c7d27b3c33c1f0f8fb
sha1: 91f784f709ac9ba9a9820c48d29783f8e78f142c
sha256: 9bc16ae8cf8af631c8f7ea02be42fe9153442290457079641be25c079be1fe6f
sha512: 0ffe576b4046f0745960ed72524a4f7a46dd389f887ab775eb4a749520580fe6ffa5014e4efab79c0f18e26b60095eda4299528c138091258e271c3668ebf04e
ssdeep: 768:bRkGybtwpM91ivG4rlqIfCAUfOc3BpYcQ77yypFOlUmOToMu3yUyJCb/wG9K7tsM:e5iTMI1cLYvyoFOku3yUyJCb/wGQ7t5P
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T13DA319D7FA8AEDA3F925173989F58319133DE7C00B828B171D21993A0B175E17FC528A
sha3_384: f37566945a27768a5fba7949c15d84e5a43559d26e322e8cfe5dcf5aab689512c5f0089ea4038ee21338eec2803ee62f
ep_bytes: 83ec0cc7053450400000000000e8fe09
timestamp: 2018-05-16 05:21:16

Version Info:
0: [No Data]

Malware.AI.3950811604 also known as:

Elastic	malicious (high confidence)
McAfee	GenericRXGW-OA!A3B5F729A8F4
Cylance	Unsafe
Cyren	W32/Ursu.CT.gen!Eldorado
Symantec	ML.Attribute.HighConfidence
F-Secure	Trojan.TR/Crypt.ZPACK.Gen7
McAfee-GW-Edition	GenericRXGW-OA!A3B5F729A8F4
SentinelOne	Static AI – Suspicious PE
Sophos	Generic ML PUA (PUA)
APEX	Malicious
Avira	TR/Crypt.ZPACK.Gen7
Microsoft	Trojan:Win32/Sabsik.TE.B!ml
Cynet	Malicious (score: 99)
Malwarebytes	Malware.AI.3950811604
Rising	Trojan.Crypto!8.364 (RDMK:cmRtazqCd8Cxt4FWWwi3idAadTCx)
Yandex	Trojan.GenAsa!BB4t9An5vss
Ikarus	Trojan.Crypt
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	W32/Ursu.558C!tr

How to remove Malware.AI.3950811604?

Malware.AI.3950811604 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X