How to remove “Malware.AI.3978438724”?

The Malware.AI.3978438724 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.3978438724 virus can do?

SetUnhandledExceptionFilter detected (possible anti-debug)
Authenticode signature is invalid
Anomalous binary characteristics

How to determine Malware.AI.3978438724?


File Info:
name: C7708314AD672D26F247.mlw
path: /opt/CAPEv2/storage/binaries/b96f174364d19f66ebe4d993d170412f392a75c687d555dfe8187c421194bb1b
crc32: 9D4CD484
md5: c7708314ad672d26f247636001272816
sha1: d638ffe832a9bc644a356a124efa9e693e0b124b
sha256: b96f174364d19f66ebe4d993d170412f392a75c687d555dfe8187c421194bb1b
sha512: a1f35047667ea31ad268890c586ec8901bdeea35ac1e7ea3b64570546881ea81ee323ceff222bda784b6bb5cc5e0b213d7817719d2e33f068cf719d4f5e1969c
ssdeep: 384:nc+hVoF0FcZLfUgs5CO+HYWqnLPqKhLkzrziyiCgb:WdfO+4TnzqmQ3uyT
type: PE32+ executable (console) x86-64, for MS Windows
tlsh: T130A2D73BB16284ADC15ED2787BE744B399F8BC300931722D02D1C5353E3ADA95F79948
sha3_384: 58127d59db94026320d78d9d537f975806975ad9fadae3c13f2c9920e43941246ce5b7cb7807fbb3b4b6abcf7ab55b51
ep_bytes: 4883ec28c705d25b000000000000e8fd
timestamp: 2014-08-16 05:28:12

Version Info:
0: [No Data]

Malware.AI.3978438724 also known as:

Lionic	Riskware.Win64.WinExec.1!c
Elastic	malicious (high confidence)
MicroWorld-eScan	Gen:Variant.Application.Agent.111
FireEye	Gen:Variant.Application.Agent.111
ALYac	Gen:Variant.Application.Agent.111
Cylance	Unsafe
Zillya	Tool.Winexe.Win64.5
Sangfor	Riskware.Win64.WinExec.gen
K7AntiVirus	Unwanted-Program ( 0050649c1 )
K7GW	Unwanted-Program ( 0050649c1 )
Cybereason	malicious.832a9b
Symantec	Trojan.Gen.MBT
ESET-NOD32	a variant of Win64/Winexe.B potentially unsafe
Kaspersky	not-a-virus:HEUR:RiskTool.Win64.WinExec.gen
BitDefender	Gen:Variant.Application.Agent.111
Ad-Aware	Gen:Variant.Application.Agent.111
Sophos	Generic ML PUA (PUA)
McAfee-GW-Edition	RDN/Generic PUP.x
Emsisoft	Gen:Variant.Application.Agent.111 (B)
GData	Gen:Variant.Application.Agent.111
Jiangmin	RiskTool.WinExec.u
Webroot	W32.Trojan.Gen
Antiy-AVL	Trojan/Generic.ASMalwS.28230E8
Microsoft	Trojan:Win32/Wacatac.A!ml
McAfee	RDN/Generic PUP.x
MAX	malware (ai score=71)
Malwarebytes	Malware.AI.3978438724
TrendMicro-HouseCall	TROJ_GEN.R002H07JR21
Ikarus	not-a-virus:WinExe
eGambit	Trojan.Generic
Fortinet	Adware/Winexe
Panda	Trj/CI.A
MaxSecure	Trojan.Malware.73516486.susgen

How to remove Malware.AI.3978438724?

Malware.AI.3978438724 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X