Malware

Malware.AI.3994724964 information

Malware Removal

The Malware.AI.3994724964 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.3994724964 virus can do?

  • Sample contains Overlay data
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • Reads data out of its own binary image
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX
  • Authenticode signature is invalid

How to determine Malware.AI.3994724964?



File Info:

name: B74D18EA16DF9BC498D0.mlw
path: /opt/CAPEv2/storage/binaries/c92c1388d2e840257347e411a025e58158f4e3c740f6962b6ac23c045e3d05e9
crc32: 28DD8363
md5: b74d18ea16df9bc498d0bfbb9c8a9fc2
sha1: 04473cb120c1999df5122457b2320a2019655390
sha256: c92c1388d2e840257347e411a025e58158f4e3c740f6962b6ac23c045e3d05e9
sha512: e3c5f5d2ec6e2e2811e40d7d2a139efd2897494f4d937555589b8895d069c5fa17586ef8458c02a18300dffbc4689d42448e580d03e3361a4a27ef5f15f50dc8
ssdeep: 3072:HZyktUt2BBKd6VVWcUkLG3CzW8Mfk8TI16HkZd5eTAphaCTBUJg94e4K2fJl2cGC:5tthJNGyK8YjI1dveiaCTBUJmFo22Z0y
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T12C44224A9984EDC8EA2AD2713FB6F214A369FF13C382AD4125C87D4F339D97C946141E
sha3_384: a135b4d63de7a3f2b856d2705287c96ea9668ad95841721a45eb679fc6fd929ee624f2251b3c6055ab7340829a3ea9bd
ep_bytes: 60be00d044008dbe0040fbff5783cdff
timestamp: 2005-11-07 18:00:39


Version Info:

Comments: http://www.autoitscript.com/autoit3/compiled.html
FileDescription: 
FileVersion: 3, 1, 1, 87
Translation: 0x0809 0x04b0

Malware.AI.3994724964 also known as:

LionicTrojan.Win32.Agent.4!c
MicroWorld-eScanTrojan.Generic.4949100
FireEyeTrojan.Generic.4949100
McAfeeArtemis!B74D18EA16DF
CylanceUnsafe
ZillyaAdware.Maxifiles.Win32.48
SangforTrojan.Win32.Generic.fraO
AlibabaBackdoor:Win32/Generic.8d96ca10
VirITBackdoor.Win32.Siggen.BDJR
CyrenW32/Backdoor.QMFM-5722
SymantecAdware.ADH
APEXMalicious
KasperskyBackdoor.Win32.Agent.bmg
BitDefenderTrojan.Generic.4949100
NANO-AntivirusTrojan.Win32.TrjGen.cxdkow
AvastWin32:Adware-gen [Adw]
TencentWin32.Backdoor.Agent.Pepp
Ad-AwareTrojan.Generic.4949100
EmsisoftTrojan.Generic.4949100 (B)
ComodoBackdoor@#2b9quoy24ba2i
DrWebBackDoor.Siggen.19855
VIPRETrojan.Generic.4949100
TrendMicroBKDR_AGENT.RWB
SentinelOneStatic AI – Suspicious PE
GDataTrojan.Generic.4949100
JiangminBackdoor/Agent.cebe
WebrootW32.Heuristic.Gen
Antiy-AVLTrojan/Generic.ASMalwS.4B
KingsoftWin32.Hack.Agent.(kcloud)
MicrosoftTrojan:Win32/Occamy.CC9
GoogleDetected
VBA32Backdoor.Agent
ALYacTrojan.Generic.4949100
MAXmalware (ai score=99)
MalwarebytesMalware.AI.3994724964
TrendMicro-HouseCallBKDR_AGENT.RWB
RisingBackdoor.Win32.Agent.tj (CLASSIC)
YandexTrojan.Agent!ZMNiUFFfl+Q
IkarusTrojan-Dropper.Agent
MaxSecureTrojan.Malware.2035704.susgen
FortinetW32/Agent.TJ!tr.bdr
AVGWin32:Adware-gen [Adw]
Cybereasonmalicious.a16df9

How to remove Malware.AI.3994724964?

Malware.AI.3994724964 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment