Malware.AI.3986833660 malicious file

The Malware.AI.3986833660 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.3986833660 virus can do?

Sample contains Overlay data
Reads data out of its own binary image
Drops a binary and executes it
Authenticode signature is invalid
Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine Malware.AI.3986833660?


File Info:
name: A93B714B668743FFA790.mlw
path: /opt/CAPEv2/storage/binaries/1cc0bb031c9a78956f3a4c7c711af480b39bbaf845d5c09fc2c68cd6782ef9e8
crc32: A635CABB
md5: a93b714b668743ffa790d9ac536f15ba
sha1: b36169b222ba08c29d3b46d3f3f9e57a4d202e0d
sha256: 1cc0bb031c9a78956f3a4c7c711af480b39bbaf845d5c09fc2c68cd6782ef9e8
sha512: cd116482020e6fc1cec3fd669499845f7bf7621f8c024d251193c77004cd1842d1f0982af62a9adc7305ccd831ae9d28f6ceee57c101d970af999d393ecbca05
ssdeep: 96:Zr4VbESMnPWEpJzH1nKyG464Z1D39p0WqTzejweTe/R2ZzmwYBjR2eskf:F4VbbMn3jVnK/47572ywLRXBjR2/i
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T103F1C93D6EC556B7D2B7DAB6C6F249CBFA61B01239124D0E50C707444C23B87BD9660E
sha3_384: ab8ddbb0c5ca2b91540110a825683e61e87145092a4368e6f4e2044e811ac7fdb2a3d183f894dfd3f7b4a0faf132db6c
ep_bytes: 8bec81c4f4feffffe8000000005b6681
timestamp: 1970-01-01 00:00:00

Version Info:
0: [No Data]

Malware.AI.3986833660 also known as:

Bkav	W32.AIDetectMalware
tehtris	Generic.Malware
MicroWorld-eScan	Trojan.Ppatre.Gen.1
FireEye	Generic.mg.a93b714b668743ff
Skyhigh	BehavesLike.Win32.Generic.zt
McAfee	GenericATG-FABE!A93B714B6687
Cylance	unsafe
Zillya	Downloader.Tiny.Win32.26411
Sangfor	Trojan.Win32.Save.a
K7AntiVirus	Trojan-Downloader ( 0049c7b11 )
K7GW	Trojan-Downloader ( 0049c7b11 )
CrowdStrike	win/malicious_confidence_100% (D)
Arcabit	Trojan.Ppatre.Gen.1
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (high confidence)
ESET-NOD32	Win32/TrojanDownloader.Tiny.NKP
Cynet	Malicious (score: 100)
APEX	Malicious
ClamAV	Win.Downloader.Upatre-9976824-0
Kaspersky	HEUR:Trojan-Dropper.Win32.Dapato.vho
BitDefender	Trojan.Ppatre.Gen.1
NANO-Antivirus	Trojan.Win32.Upatre.denomc
Avast	Win32:Trojan-gen
Tencent	Trojan-Dropper.Win32.Dapato.ka
Sophos	Mal/Upatre-AS
F-Secure	Trojan.TR/Dropper.Gen
DrWeb	Trojan.DownLoad3.33795
VIPRE	Trojan.Ppatre.Gen.1
TrendMicro	TROJ_UPATRE.SM37
Trapmine	suspicious.low.ml.score
Emsisoft	Trojan.Ppatre.Gen.1 (B)
Ikarus	Trojan-Downloader.Win32.Tiny
Jiangmin	TrojanDropper.Dapato.aduh
Varist	W32/Tiny.L.gen!Eldorado
Avira	TR/Dropper.Gen
Antiy-AVL	Trojan[Downloader]/Win32.AGeneric
Microsoft	Trojan:Win32/Upatre.MA!MTB
ZoneAlarm	HEUR:Trojan-Dropper.Win32.Dapato.vho
GData	Trojan.Ppatre.Gen.1
Google	Detected
AhnLab-V3	Trojan/Win.Gen
Acronis	suspicious
VBA32	BScope.TrojanDownloader.Upatre
ALYac	Trojan.Ppatre.Gen.1
MAX	malware (ai score=84)
Malwarebytes	Malware.AI.3986833660
Panda	Trj/Genetic.gen
TrendMicro-HouseCall	TROJ_UPATRE.SM37
Rising	Downloader.Waski!1.E076 (CLASSIC)
Yandex	Trojan.DL.Tiny!O2eupZaMoQE
SentinelOne	Static AI – Malicious PE
MaxSecure	Trojan.Upatre.Gen
Fortinet	W32/Waski.C!tr
BitDefenderTheta	AI:Packer.3828A9041E
AVG	Win32:Trojan-gen
Cybereason	malicious.222ba0
DeepInstinct	MALICIOUS

How to remove Malware.AI.3986833660?

Malware.AI.3986833660 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X