Malware.AI.3976590074 removal tips

The Malware.AI.3976590074 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.3976590074 virus can do?

The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid

How to determine Malware.AI.3976590074?


File Info:
name: D00B051DA47FE9585BD4.mlw
path: /opt/CAPEv2/storage/binaries/428773387b488eb176dbe76e929a608a05ba634e22618a8b6ba48110dd53d299
crc32: 8F2260F5
md5: d00b051da47fe9585bd4c14aa69a2966
sha1: 2a258ab12855cf3d3d0473a4da9508015a02d91d
sha256: 428773387b488eb176dbe76e929a608a05ba634e22618a8b6ba48110dd53d299
sha512: 0584cf14113864d89f7d069fa94c7dbbc376686e17c76827b5516c7df3577cccc855d40baf7c7b0107ef4a6f1a11164b2f92277d46b91135776aaafff1848ebe
ssdeep: 12288:wqBWCet0qyBxqns0Dk4sHMIV77nMrx8ID9D2fIQweNb6AFefq/4B+zY0Qs9rK7kA:vBWelxqsfNMNr79DsIZcGfI4kzY0Qs9+
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1D6F423099D6F58BECB1C637A0CAF0F8F52D658494318F5C3E7C91D98C68A5EA087326D
sha3_384: 6ba77891ceafabf1797a3031854daf7a4ce3cb88e04227fab979c44c9a552d79dadd82d07d5f86a117c2e3870d009f62
ep_bytes: 7a59766e70706c5661645848556b7258
timestamp: 1970-01-01 00:00:00

Version Info:
0: [No Data]

Malware.AI.3976590074 also known as:

Bkav	W32.AIDetect.malware1
DrWeb	Trojan.PWS.Banker1.30278
FireEye	Generic.mg.d00b051da47fe958
Sangfor	Suspicious.Win32.Save.a
Alibaba	TrojanPSW:Win32/Miner.2c7561e9
CrowdStrike	win/malicious_confidence_100% (W)
Cyren	W32/CoinMiner.AZ.gen!Eldorado
APEX	Malicious
Paloalto	generic.ml
ClamAV	Win.Trojan.Banload-9853585-0
NANO-Antivirus	Trojan.Win32.Miner.jeccbt
SUPERAntiSpyware	Trojan.Agent/Gen-Kryptik
Ad-Aware	Gen:Variant.Ulise.267041
Emsisoft	Gen:Variant.Ulise.267041 (B)
Comodo	TrojWare.Win32.TrojanDownloader.Banload.RES@8hfp75
McAfee-GW-Edition	BehavesLike.Win32.Generic.bm
Sophos	Mal/Generic-R + Troj/Miner-ABM
Ikarus	Trojan.Win64.CoinMiner
Gridinsoft	Ransom.Win32.Sabsik.sa
Arcabit	Trojan.Ulise.D41321
Microsoft	Trojan:Win32/Sabsik.FL.B!ml
Cynet	Malicious (score: 100)
AhnLab-V3	Trojan/Win32.Banload.C3470781
Acronis	suspicious
ALYac	Gen:Variant.Ulise.267041
Malwarebytes	Malware.AI.3976590074
SentinelOne	Static AI – Malicious PE
eGambit	Unsafe.AI_Score_100%
Fortinet	W32/Banload.BD2A!tr

How to remove Malware.AI.3976590074?

Malware.AI.3976590074 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X