Categories: Malware

What is “Malware.AI.3992797019”?

The Malware.AI.3992797019 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.3992797019 virus can do?

  • Sample contains Overlay data
  • Reads data out of its own binary image
  • Authenticode signature is invalid
  • Uses Windows utilities for basic functionality
  • Harvests credentials from local FTP client softwares
  • Anomalous binary characteristics
  • Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine Malware.AI.3992797019?



File Info:

name: 79BE1344C49D4EAA88BC.mlwpath: /opt/CAPEv2/storage/binaries/9651ca40e099096272cdaa200c75ede38ca925f33f4dae8a918b3454ce83a86dcrc32: 264577A6md5: 79be1344c49d4eaa88bccbf278c53ea2sha1: a561c2b4d6bc115e5b162f55b4ef04dca62d9bf6sha256: 9651ca40e099096272cdaa200c75ede38ca925f33f4dae8a918b3454ce83a86dsha512: f93e7d4a2321a0e3887d9548d71fae86fa371379e61b697b105a6e7d197c85b41b722101c8754f5a271a5fb134f3950b7691a217cd8cd86c237b1f89c7755cd5ssdeep: 98304:m5aFoxmLrJsg6OVhPpcVDgr8UTlTRmaSf:m5aFoQrkOV4Mr8GUftype: PE32 executable (GUI) Intel 80386, for MS Windowstlsh: T174F533227F289076CA9334711E14E336159AFE191B0918CB6BD83F0B7D356E2DA7E1C9sha3_384: ee9874aa132b8b0cd24fbf58c8e5cb49a4abcef79ac815ce15608bd2989fe6acb901d2c607f40171955488a8093f976aep_bytes: 558bec6aff6880fa410068f0c4410064timestamp: 2016-04-02 22:14:34

Version Info:

0: [No Data]

Malware.AI.3992797019 also known as:

Bkav W32.AIDetectMalware
Elastic malicious (moderate confidence)
ClamAV Revoked.CRT.HookSignTool-9999979-0
Cylance unsafe
Cybereason malicious.4d6bc1
APEX Malicious
Cynet Malicious (score: 100)
F-Secure Heuristic.HEUR/AGEN.1320309
McAfee-GW-Edition BehavesLike.Win32.Generic.wc
Trapmine malicious.high.ml.score
Webroot Pua.Opencandy
Avira HEUR/AGEN.1320309
Microsoft Ransom:Win32/CVE
Google Detected
McAfee Artemis!79BE1344C49D
Malwarebytes Malware.AI.3992797019
Ikarus Ransom.Win32
DeepInstinct MALICIOUS
CrowdStrike win/grayware_confidence_60% (D)

How to remove Malware.AI.3992797019?

  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.
Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment
Share
Published by
Paul Valéry
Tags: Malware.AI.3992797019
1 year ago

Recent Posts

Trojan:Win64/Midie.NM!MTB malicious file

The Trojan:Win64/Midie.NM!MTB is considered dangerous by lots of security experts. When this infection is active,…

10 mins ago

Virus:Win32/Patchload.A removal

The Virus:Win32/Patchload.A is considered dangerous by lots of security experts. When this infection is active,…

10 mins ago

Go For Files (PUA) information

The Go For Files (PUA) is considered dangerous by lots of security experts. When this…

41 mins ago

About “TrojanDownloader:Win32/VB.ZJ” infection

The TrojanDownloader:Win32/VB.ZJ is considered dangerous by lots of security experts. When this infection is active,…

41 mins ago

Win32:ExpressDload-AH [PUP] malicious file

The Win32:ExpressDload-AH [PUP] is considered dangerous by lots of security experts. When this infection is…

41 mins ago

Win32/SimpleFiles.A potentially unwanted removal guide

The Win32/SimpleFiles.A potentially unwanted is considered dangerous by lots of security experts. When this infection…

46 mins ago