What is “Malware.AI.3957115223”?

The Malware.AI.3957115223 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.3957115223 virus can do?

The binary likely contains encrypted or compressed data.
Authenticode signature is invalid

How to determine Malware.AI.3957115223?


File Info:
name: B8D4E500E7D142FC74A8.mlw
path: /opt/CAPEv2/storage/binaries/cd9a411b9068440ebea919a53ba8c822bc3e0fe51ed120986ada56d94e8cace4
crc32: B3CAC956
md5: b8d4e500e7d142fc74a8cd3cb595b4d6
sha1: 7fcf771c75be3ed57d89a8de13c422f4d181a4af
sha256: cd9a411b9068440ebea919a53ba8c822bc3e0fe51ed120986ada56d94e8cace4
sha512: 395802afd87350f96f48b997415e1ab26ac48e7c78060431c0565a4746554fdbf6127a261ded8b1c91458e23dded282f8038d3b96b5ee091aa3de63b33fc6c83
ssdeep: 24576:nqFcD5ge0pFcD5gvJ3tsqFcD5ge0pFcD5gyO7o6FcD5ge0pFcD5gvJ3tsqFcD5gO:nR1K+1061K+1B
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T16685CFD46A17C028E08F29F28F75E6EA93DE6C1BB56F340FBEC8CA36A21561551D1C43
sha3_384: 9856a3f8d51a3ce2db58fffe89fd5fbcdc9da1f5d451781c13e166b5a5a0ec75f7d1ed617410d2c7697fb721a1d4b4e4
ep_bytes: bf000000005209d929d95e81c3c4541f
timestamp: 1970-01-01 00:00:00

Version Info:
0: [No Data]

Malware.AI.3957115223 also known as:

Bkav	W32.AIDetect.malware1
Lionic	Trojan.Win32.Copak.4!c
Elastic	malicious (high confidence)
MicroWorld-eScan	Gen:Variant.Razy.866116
FireEye	Generic.mg.b8d4e500e7d142fc
McAfee	Glupteba-FTSD!B8D4E500E7D1
CrowdStrike	win/malicious_confidence_100% (W)
BitDefender	Gen:Variant.Razy.866116
K7GW	Trojan ( 00577ea11 )
K7AntiVirus	Trojan ( 00577ea11 )
Arcabit	Trojan.Razy.DD3744
BitDefenderTheta	Gen:NN.ZexaF.34294.PvZ@aGo3wXi
Cyren	W32/Kryptik.ECM.gen!Eldorado
ESET-NOD32	a variant of Win32/GenKryptik.CTNW
TrendMicro-HouseCall	TROJ_GEN.R002C0PKN21
Paloalto	generic.ml
ClamAV	Win.Malware.Razy-9909396-0
Kaspersky	HEUR:Trojan.Win32.Copak.vho
Alibaba	Trojan:Win32/Copak.f06dc2b3
NANO-Antivirus	Virus.Win32.Gen.ccmw
Rising	Trojan.Kryptik!1.BF57 (CLASSIC)
Ad-Aware	Gen:Variant.Razy.866116
Sophos	Mal/Generic-R + Troj/Agent-BGOS
DrWeb	Trojan.Siggen15.50877
TrendMicro	TROJ_GEN.R002C0PKN21
McAfee-GW-Edition	BehavesLike.Win32.VirRansom.tc
Emsisoft	Gen:Variant.Razy.866116 (B)
APEX	Malicious
Jiangmin	Trojan.Copak.bdvn
MaxSecure	Trojan.Malware.121218.susgen
Avira	HEUR/AGEN.1110718
MAX	malware (ai score=84)
Gridinsoft	Ransom.Win32.Sabsik.sa
Microsoft	Trojan:Win32/Sabsik.FL.B!ml
GData	Gen:Variant.Razy.866116
Cynet	Malicious (score: 100)
AhnLab-V3	Malware/Win32.RL_Generic.R293305
Acronis	suspicious
ALYac	Gen:Variant.Razy.866116
VBA32	BScope.Trojan.Wacatac
Malwarebytes	Malware.AI.3957115223
Ikarus	Trojan.Win32.Crypt
Panda	Trj/CI.A
Tencent	Malware.Win32.Gencirc.11d8e7b7
Yandex	Trojan.Copak!pkRFykJxCcA
SentinelOne	Static AI – Malicious PE
eGambit	Unsafe.AI_Score_99%
Fortinet	W32/Kryptik.ECM!tr
AVG	Win32:Evo-gen [Susp]
Cybereason	malicious.c75be3
Avast	Win32:Evo-gen [Susp]

How to remove Malware.AI.3957115223?

Malware.AI.3957115223 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X