About “Malware.AI.4035918426” infection

The Malware.AI.4035918426 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.4035918426 virus can do?

SetUnhandledExceptionFilter detected (possible anti-debug)
Dynamic (imported) function loading detected
Authenticode signature is invalid

How to determine Malware.AI.4035918426?


File Info:
name: 762C4CCD02D41B33E1EF.mlw
path: /opt/CAPEv2/storage/binaries/a0e8b39d4c01d3f0c059c28911ff7f35abcdba5094d8f46838205475cb707960
crc32: E0EC0BF8
md5: 762c4ccd02d41b33e1eff36c1b97d3ad
sha1: f4854c2c68e83dbb60ed0bf7661ccdedcebf4dc2
sha256: a0e8b39d4c01d3f0c059c28911ff7f35abcdba5094d8f46838205475cb707960
sha512: a09b3cc62cd8531e2c431ea67c3bf31a5a3533371bcca2c7b3e6bc74f4b1479fd683c5e61ac62e6248833688c815a745492a98507627c98ac5a8b449a146b2cf
ssdeep: 6144:L7XV1Aew1Ryfx1QZbhq45Rp2QSIvVW4UuoqHnAOP1Sa:Lh+n1Rox1QZbB5GQ/VIuoqHRwa
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T1FFE4396175528832D871037400B5DBB9827F7EA42B3296DB23D4BE3BBF332D25921D66
sha3_384: 614ac8966970599e8463dbdb00afadf464c55bcbc42974fc7aec52ac0c90c7601b06563f3a8480b1461c19fe95c4271b
ep_bytes: e816080000e974feffff8b4df464890d
timestamp: 2021-12-23 04:36:30

Version Info:
FileVersion: 1.0.0.5
LegalCopyright: 2020-2022 All rights reserved
Translation: 0x0409 0x04b0

Malware.AI.4035918426 also known as:

Elastic	malicious (high confidence)
MicroWorld-eScan	Trojan.GenericKD.47864141
FireEye	Trojan.GenericKD.47864141
ALYac	Trojan.GenericKD.47864141
Malwarebytes	Malware.AI.4035918426
Sangfor	Trojan.Win32.Sabsik.FL
K7AntiVirus	Trojan ( 0058c30d1 )
Alibaba	Trojan:Win32/Clipbanker.36808d1c
K7GW	Trojan ( 0058c30d1 )
CrowdStrike	win/malicious_confidence_100% (W)
BitDefenderTheta	Gen:NN.ZexaF.34114.Pu0@aSdE3@fi
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win32/Agent.ADUB
APEX	Malicious
Kaspersky	HEUR:Trojan.Win32.Agentb.gen
BitDefender	Trojan.GenericKD.47864141
Avast	Win32:PWSX-gen [Trj]
Tencent	Malware.Win32.Gencirc.10cfb804
Ad-Aware	Trojan.GenericKD.47864141
Emsisoft	Trojan.GenericKD.47864141 (B)
TrendMicro	TROJ_GEN.R002C0PLT21
McAfee-GW-Edition	BehavesLike.Win32.Generic.jz
Sophos	Mal/Generic-S
Ikarus	Trojan.Win32.Clipbanker
GData	Win32.Trojan.PSE.KDHUEU
Jiangmin	Trojan.Agentb.ldq
Avira	HEUR/AGEN.1202295
Antiy-AVL	Trojan/Generic.ASMalwS.34FB808
Gridinsoft	Ransom.Win32.Sabsik.sa
Microsoft	Trojan:Win32/Sabsik!ml
Cynet	Malicious (score: 99)
AhnLab-V3	Trojan/Win.Generic.R460550
McAfee	RDN/Generic PWS.y
MAX	malware (ai score=82)
VBA32	Trojan.Agentb
Cylance	Unsafe
TrendMicro-HouseCall	TROJ_GEN.R002C0PLT21
Rising	Trojan.Agent!8.B1E (CLOUD)
Fortinet	W32/Redcap.ROQJ!tr
AVG	Win32:PWSX-gen [Trj]
Panda	Trj/GdSda.A

How to remove Malware.AI.4035918426?

Malware.AI.4035918426 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X