Malware.AI.4006565803 removal

The Malware.AI.4006565803 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.4006565803 virus can do?

The binary contains an unknown PE section name indicative of packing
The executable is compressed using UPX
Authenticode signature is invalid

How to determine Malware.AI.4006565803?


File Info:
name: 8BFDD7AC132CEFD36CCA.mlw
path: /opt/CAPEv2/storage/binaries/26b6d567d4f26b5a2af9af8975c242b34423673bbde182d8facebf1bca94160e
crc32: D7DCEFB1
md5: 8bfdd7ac132cefd36ccabb958314b2d6
sha1: 62a80dc179a83974f313480c355fe253e32458ca
sha256: 26b6d567d4f26b5a2af9af8975c242b34423673bbde182d8facebf1bca94160e
sha512: 27c4fe57867cfbf4cb4da8de240a5e4e685ae19593528656dc6c8e44e8b530641dcf7e33c10a6e7ae79a43b1a75ee83145586465d5302d9c914ff76f35ef38a6
ssdeep: 6144:drwTzSJ8odySygTfwo1pjA5VFeVSJ++klpGhlAO/0Ea3rBBYam3:dQzSJ8oYsDqVFeVSJxklpA2B
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1A2C41AF43BD2C03AD12B12764455C7CA61B2B8B0AF71CE1BB2E53B1F1E355638D116AA
sha3_384: 4e693b3aca8ce2807184ca0c25bfd8e5cf4948879ee89417beb281640b6d8e5586962b1880e4a80bbdce7b79a8ab3ac6
ep_bytes: 60be00304f008dbe00e0f0ff57eb0b90
timestamp: 2009-06-09 17:51:40

Version Info:
Comments: Created with Setup Factory 8.0
FileDescription: Setup Application
FileVersion: 8.1.1008.0
InternalName: suf80_rt
LegalCopyright: Runtime Engine Copyright © 2009 Indigo Rose Corporation (www.indigorose.com)
LegalTrademarks: Setup Factory is a trademark of Indigo Rose Corporation
OriginalFilename: suf80_rt.exe
ProductName: Setup Factory 8.0 Runtime
ProductVersion: 8.1.1008.0
Translation: 0x0409 0x04b0

Malware.AI.4006565803 also known as:

Lionic	Trojan.Win32.Generic.4!c
Elastic	malicious (moderate confidence)
FireEye	Generic.mg.8bfdd7ac132cefd3
Malwarebytes	Malware.AI.4006565803
Sangfor	Trojan.Win32.Agent.Vql3
Alibaba	Trojan:Win32/Generic.9eadfafc
Cybereason	malicious.179a83
Cyren	W32/Backdoor.J.gen!Eldorado
APEX	Malicious
Paloalto	generic.ml
Cynet	Malicious (score: 100)
Avast	Win32:Malware-gen
McAfee-GW-Edition	BehavesLike.Win32.RealProtect.hm
Sophos	Generic ML PUA (PUA)
Antiy-AVL	Trojan/Win32.Wacatac
Xcitium	Packed.Win32.MUPX.Gen@24tbus
ViRobot	Trojan.Win.Z.Agent.578560.F
Google	Detected
AhnLab-V3	Trojan/Win.Generic.C5221495
McAfee	RDN/Generic.dx
Cylance	unsafe
TrendMicro-HouseCall	TROJ_GEN.R002H06D123
MaxSecure	Trojan.Malware.186336196.susgen
Fortinet	W32/PossibleThreat
AVG	Win32:Malware-gen
DeepInstinct	MALICIOUS
CrowdStrike	win/malicious_confidence_70% (D)

How to remove Malware.AI.4006565803?

Malware.AI.4006565803 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X