Malware

Malware.AI.3958789211 removal

Malware Removal

The Malware.AI.3958789211 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.3958789211 virus can do?

  • Unconventionial binary language: Chinese (Simplified)
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • The binary contains an unknown PE section name indicative of packing
  • The executable is compressed using UPX
  • Authenticode signature is invalid

How to determine Malware.AI.3958789211?



File Info:

name: C3405322BA63716E2857.mlw
path: /opt/CAPEv2/storage/binaries/cfabc92579a10c60fd19ff4e5e643739a825ec38d08c86f96cba130bd35fe0ff
crc32: 63240DF8
md5: c3405322ba63716e28570556f5f7c253
sha1: 95ae0e027030108df24f54741f12c7e60442bbf2
sha256: cfabc92579a10c60fd19ff4e5e643739a825ec38d08c86f96cba130bd35fe0ff
sha512: 8e3c7cc90626628aa5306e0fd38d96bf5d4d7999772b17f02bd9af3a6b7855f45639df5d2446569e69df378f8f34aeecca214f46e484ddac7bb767e6a21521c5
ssdeep: 98304:8idJ6mPGPVABzjr+fEn7KvEQ0nCBvEQ0j:82oAJr+i7KXe
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T10C264B10F6509DAFC27B4A3837E2C528D341ACF7C6314611BA1D32E72F3559619AB2BE
sha3_384: d9659d0cdbf63d08bac5739a943fb865bf48fdaf191376b1761c801d175faa9874df5e439d3f315960e1ddc6e0262929
ep_bytes: 60be00f0ed008dbe002052ff57eb0b90
timestamp: 2018-10-22 06:32:43


Version Info:

CompanyName: 上海贝锐信息科技股份有限公司
FileDescription: 向日葵客户端
FileVersion: 9.8.1.15686
InternalName: SunloginClient
LegalCopyright: 上海贝锐 版权所有
OriginalFilename: SunloginClient.exe
ProductName: 向日葵客户端
ProductVersion: 9.8.1.15686
Translation: 0x0804 0x04b0

Malware.AI.3958789211 also known as:

ClamAVWin.Malware.Zusy-9956834-0
FireEyeGeneric.mg.c3405322ba63716e
McAfeeArtemis!C3405322BA63
SangforTrojan.Win32.Save.a
CrowdStrikewin/malicious_confidence_60% (D)
VirITWin32.Sality.BI
SymantecML.Attribute.HighConfidence
APEXMalicious
CynetMalicious (score: 100)
KasperskyUDS:Trojan-Ransom.Win32.Blocker.gfhu
AvastSf:ShellCode-GH [Trj]
SophosGeneric ML PUA (PUA)
DrWebTrojan.Siggen6.18140
McAfee-GW-EditionArtemis
JiangminWin32/HLLP.Kuku.poly2
AviraHEUR/Patched.Ren
MicrosoftTrojan:Win32/Wacatac.B!ml
GoogleDetected
VBA32Hoax.Blocker
MalwarebytesMalware.AI.3958789211
RisingDownloader.Rakhni!8.1CEF (TFE:1:i5zF6NbKexB)
IkarusSality.Win32
FortinetW32/ULPM.16C0!tr
BitDefenderThetaGen:NN.ZexaF.34698.@p0@ayUiT8aj
AVGSf:ShellCode-GH [Trj]
Cybereasonmalicious.270301

How to remove Malware.AI.3958789211?

Malware.AI.3958789211 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment