Malware.AI.4043001125 (file analysis)

The Malware.AI.4043001125 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.4043001125 virus can do?

At least one process apparently crashed during execution
Authenticode signature is invalid
Anomalous binary characteristics

How to determine Malware.AI.4043001125?


File Info:
name: EE2742C4B3CAF35EEC37.mlw
path: /opt/CAPEv2/storage/binaries/e6cc03039b93154c31a6970b7608d717cc7597ca637b2802e2d528f151edbd48
crc32: ACEFFEB4
md5: ee2742c4b3caf35eec37ab28003f3e82
sha1: f039e0063ed6932fccd7804434f93a538568f2fb
sha256: e6cc03039b93154c31a6970b7608d717cc7597ca637b2802e2d528f151edbd48
sha512: df6fb31e8f9fee00f7ecc3ca58ab833e7d3238a4d63493eebc5ee93d5530134bd8622fe0173447a5edc93685ddb96c6db6af646c0bffb124006b8a7c94bd93b1
ssdeep: 6144:dxcwSObYGkbtqwazJ7v8EE0HyKIuFvrkc:HcdObYH5q9x8wxH
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1A734CFD6E75CC891D4390F7BC601CC9A810C7F744D672BEE24BD3A80E9B60C5A987DA9
sha3_384: acf30e7d66c6a779778a17e2eed81aa62d4e6f2f92238a95302811ae30cb2cbd5d75255e2a3ee27a1da4f1c3d962b044
ep_bytes: 33c0682d354100c3bd85f02c37635056
timestamp: 2011-04-25 01:12:05

Version Info:
CompanyName: Don HO don.h@free.fr
FileDescription: Notepad++ : a free (GNU) source code editor
FileVersion: 5.7
InternalName: npp.exe
LegalCopyright: Copyleft 1998-2006 by Don HO
OriginalFilename: Notepad++.exe
ProductName: Notepad++
ProductVersion: 5.7
Translation: 0x0409 0x04b0

Malware.AI.4043001125 also known as:

Bkav	W32.AIDetect.malware2
Lionic	Trojan.Multi.Generic.4!c
Elastic	malicious (high confidence)
Cynet	Malicious (score: 100)
FireEye	Generic.mg.ee2742c4b3caf35e
CAT-QuickHeal	TrojanPWS.Zbot.Y
ALYac	Gen:Variant.Ulise.236655
Cylance	Unsafe
VIPRE	Lookslike.Win32.Sirefef.zh (v)
Sangfor	Trojan.Win32.Kryptik.8
K7AntiVirus	Trojan ( 004f11e51 )
Alibaba	Trojan:Win32/Kryptik.e39caedf
K7GW	Trojan ( 004f11e51 )
Cybereason	malicious.4b3caf
BitDefenderTheta	Gen:NN.ZexaF.34212.oC1@aOLIkegi
Cyren	W32/FakeNPP.A.gen!Eldorado
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win32/Kryptik.ZDG
TrendMicro-HouseCall	TSPY_ZBOT.SMES
Paloalto	generic.ml
Kaspersky	UDS:DangerousObject.Multi.Generic
BitDefender	Gen:Variant.Ulise.236655
NANO-Antivirus	Trojan.Win32.Agent.efuzvc
MicroWorld-eScan	Gen:Variant.Ulise.236655
APEX	Malicious
Tencent	Malware.Win32.Gencirc.10c0ce90
Ad-Aware	Gen:Variant.Ulise.236655
Emsisoft	Gen:Variant.Ulise.236655 (B)
Comodo	Malware@#4m4x4z3ldh99
Zillya	Trojan.Kryptik.Win32.893572
TrendMicro	TSPY_ZBOT.SMES
McAfee-GW-Edition	BehavesLike.Win32.Ransomware.dh
Sophos	Mal/Generic-R + Mal/EncPk-ABFO
SentinelOne	Static AI – Malicious PE
GData	Gen:Variant.Ulise.236655
Webroot	W32.Infostealer.Zeus
Avira	TR/Agent.aadv
MAX	malware (ai score=100)
Antiy-AVL	Trojan/Win32.TSGeneric
Arcabit	Trojan.Ulise.D39C6F
ZoneAlarm	UDS:DangerousObject.Multi.Generic
Microsoft	PWS:Win32/Zbot!rfn
AhnLab-V3	Malware/Win32.Generic.C1970857
Acronis	suspicious
McAfee	GenericR-HQJ!EE2742C4B3CA
VBA32	Malware-Cryptor.General.3
Malwarebytes	Malware.AI.4043001125
Avast	Win32:Reveton-Y [Trj]
Rising	Trojan.Kryptik!8.8 (CLOUD)
Yandex	Trojan.Kryptik!3BDg7cIAA78
Ikarus	Trojan.Win32.Ransom
eGambit	Generic.Malware
Fortinet	W32/Kryptik.ZFQ!tr
AVG	Win32:Reveton-Y [Trj]
Panda	Bck/Qbot.AO
CrowdStrike	win/malicious_confidence_100% (W)

How to remove Malware.AI.4043001125?

Malware.AI.4043001125 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X