Malware.AI.4039188599 information

The Malware.AI.4039188599 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.4039188599 virus can do?

Sample contains Overlay data
Reads data out of its own binary image
Authenticode signature is invalid
Anomalous binary characteristics

How to determine Malware.AI.4039188599?


File Info:
name: 3A489C62B9463487C646.mlw
path: /opt/CAPEv2/storage/binaries/6be336dcecf9687329c0b71b9d33d06ef4c79400ab8e45502507d6f73c2abcaa
crc32: 44104C0E
md5: 3a489c62b9463487c6460537ed6dbdd3
sha1: d662a73112647a42f9531193088f99ffd803a18d
sha256: 6be336dcecf9687329c0b71b9d33d06ef4c79400ab8e45502507d6f73c2abcaa
sha512: 804b3148756cd9ac2ffce1330df68a2cc336931f0b60c4df6424042755da501a0ff630ffed2f2f42c879d95053f686bcc1cedff1b960e22b6946edc6ede3fc09
ssdeep: 12288:32zVOdlQP1foAwFvhsqPPm65Z0FGb9iG5:IVOda/+vhsqPPm65Z0FGb9iG5
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T19D568E13B3C402B6F5D202B0286B5BB6AB3D7D255735C983A378E81D5E32B50D63A34E
sha3_384: 0d942247ccf0d663a68ddbd3a4e77220d218017288911f03433f10db429588c34a6449947f59698df9e1561bd5dbfc9c
ep_bytes: 558bec6aff68f8b897006888b2960064
timestamp: 2008-10-28 23:02:14

Version Info:
Comments: 
CompanyName: Sysinternals - www.sysinternals.com
FileDescription: Rootkit detection utility
FileVersion: 1.70
InternalName: 
LegalCopyright: Copyright (C) 2005-2006 Bryce Cogswell and Mark Russinovich
LegalTrademarks: 
OriginalFilename: 
PrivateBuild: 
ProductName: Sysinternals Rootkitrevealer
ProductVersion: 1.70
SpecialBuild: 
Translation: 0x0409 0x04b0

Malware.AI.4039188599 also known as:

Bkav	W32.AIDetectMalware
Lionic	Trojan.Win32.Swisyn.4!c
MicroWorld-eScan	Gen:Variant.Zusy.511270
FireEye	Generic.mg.3a489c62b9463487
Skyhigh	BehavesLike.Win32.Worm.tz
McAfee	Artemis!3A489C62B946
Malwarebytes	Malware.AI.4039188599
VIPRE	Gen:Variant.Zusy.511270
Sangfor	Trojan.Win32.Zusy.V1xy
BitDefender	Gen:Variant.Zusy.511270
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (high confidence)
APEX	Malicious
ClamAV	Win.Malware.Swisyn-9934739-0
NANO-Antivirus	Trojan.Win32.Swisyn.ezalml
Rising	Trojan.Generic@AI.86 (RDML:yf8laHzEvJTpHMcIsX6GlQ)
Sophos	Generic Reputation PUA (PUA)
Google	Detected
F-Secure	Trojan.TR/Patched.Gen
Trapmine	suspicious.low.ml.score
Emsisoft	Gen:Variant.Zusy.511270 (B)
Ikarus	Trojan.Win32.Agent
Avira	TR/Patched.Gen
MAX	malware (ai score=87)
Antiy-AVL	Trojan/Win32.Wacatac
Microsoft	Trojan:Win32/Wacatac.B!ml
Arcabit	Trojan.Zusy.D7CD26
GData	Gen:Variant.Zusy.511270
Cynet	Malicious (score: 100)
DeepInstinct	MALICIOUS
Cylance	unsafe
TrendMicro-HouseCall	TROJ_GEN.R002H09K523
MaxSecure	Trojan.Malware.121218.susgen
Fortinet	W32/Swisyn.R!tr
AVG	FileRepMalware [Misc]
Avast	FileRepMalware [Misc]
CrowdStrike	win/malicious_confidence_90% (W)

How to remove Malware.AI.4039188599?

Malware.AI.4039188599 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X