Should I remove “Malware.AI.4016694774”?

The Malware.AI.4016694774 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.4016694774 virus can do?

Authenticode signature is invalid
Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine Malware.AI.4016694774?


File Info:
name: 91A2D9910953898C0984.mlw
path: /opt/CAPEv2/storage/binaries/5b353d828456de3295a7d297908c7bd4bbf49fb0fbadcde8e8f3bfc54cf0f5c8
crc32: 000085DC
md5: 91a2d9910953898c09847d3176bfba1d
sha1: 1b078eec573a025f228640b617e3fb986e4fb1a3
sha256: 5b353d828456de3295a7d297908c7bd4bbf49fb0fbadcde8e8f3bfc54cf0f5c8
sha512: 2327b54efe7f022982099a372180658b99b31b3942c6b221360cad0df5245514259869394ae616fc02e096a24fcfb8061b4895f48f4f5dc16a4720feba81fb21
ssdeep: 24576:fAHnh+eWsN3skA4RV1Hom2KXMmHaClt+X55:Ch+ZkldoPK8Yakc
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1F0256A03B391C0A5FEAB9973DB55F2F1D6786C24C963851F12C83D6BBA701A112BD263
sha3_384: 2b78e5d2b98f23431a8ecf34678b15e2cfe8a134e40bb17f1633666e42069cb5d6904d2b7cd9e0df47816cf0b6c7044e
ep_bytes: e8c8d00000e97ffeffffcccccccccccc
timestamp: 2019-04-27 11:39:08

Version Info:
Translation: 0x0809 0x04b0

Malware.AI.4016694774 also known as:

Bkav	W32.AIDetectMalware
Lionic	Trojan.Multi.Generic.4!c
MicroWorld-eScan	AIT.Heur.Acapulco.11.DBE561BF.Gen
Skyhigh	BehavesLike.Win32.Generic.dh
ALYac	Trojan.AutoIt.100864
Cylance	unsafe
Sangfor	Trojan.Win32.Agent.Viix
K7AntiVirus	Trojan ( 0054bb081 )
Alibaba	Trojan:Win32/Occamy.0afbd2e0
K7GW	Trojan ( 0054bb081 )
CrowdStrike	win/malicious_confidence_100% (W)
VirIT	Trojan.Win32.Stealer.BMFU
Symantec	Trojan.Gen.MBT
Elastic	malicious (moderate confidence)
ESET-NOD32	multiple detections
APEX	Malicious
Cynet	Malicious (score: 99)
Kaspersky	UDS:DangerousObject.Multi.Generic
BitDefender	AIT.Heur.Acapulco.11.DBE561BF.Gen
NANO-Antivirus	Trojan.Win32.Autoit.fppvbb
Avast	Win32:Evo-gen [Trj]
Ad-Aware	AIT.Heur.Acapulco.11.DBE561BF.Gen
Emsisoft	AIT.Heur.Acapulco.11.DBE561BF.Gen (B)
F-Secure	Heuristic.HEUR/AGEN.1319496
VIPRE	AIT.Heur.Acapulco.11.DBE561BF.Gen
FireEye	AIT.Heur.Acapulco.11.DBE561BF.Gen
Sophos	Mal/Generic-S
Ikarus	Trojan.Win32.Autoit
GData	AIT.Heur.Acapulco.11.DBE561BF.Gen (2x)
Webroot	W32.Trojan.Gen
Google	Detected
Avira	HEUR/AGEN.1319496
Xcitium	Malware@#h2a3vbisqrro
Arcabit	AIT.Heur.Acapulco.11.DBE561BF.Gen [many]
Microsoft	Trojan:Win32/Ditertag.A
Varist	W32/AutoIt.IM.gen!Eldorado
McAfee	Artemis!91A2D9910953
VBA32	Trojan.Tiggre
Malwarebytes	Malware.AI.4016694774
Panda	Trj/CI.A
SentinelOne	Static AI – Malicious PE
MaxSecure	Trojan.Malware.300983.susgen
AVG	Win32:Evo-gen [Trj]
Cybereason	malicious.c573a0
DeepInstinct	MALICIOUS

How to remove Malware.AI.4016694774?

Malware.AI.4016694774 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X