About “Malware.AI.4088579077” infection

The Malware.AI.4088579077 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.4088579077 virus can do?

CAPE extracted potentially suspicious content
The binary likely contains encrypted or compressed data.
Authenticode signature is invalid
Binary compilation timestomping detected

How to determine Malware.AI.4088579077?


File Info:
name: 329BB9FDC04A50F5A182.mlw
path: /opt/CAPEv2/storage/binaries/6ffcbf341079a4d0ec57f8e8dc818f51febe17b1309f3373b1004f754d4ae08b
crc32: 6B456FEA
md5: 329bb9fdc04a50f5a182ca96e9ab3926
sha1: 26ddbb94e02785a352d25cadec87de055d71584d
sha256: 6ffcbf341079a4d0ec57f8e8dc818f51febe17b1309f3373b1004f754d4ae08b
sha512: 15fe066f774b2a6e80e2709bc6ab82c21b5cd374d81ca27027ee70b56b9fef8fd566eaef2d80b15d4a9f526e1d5ff2a35a28f89ecc53ab431dc5dbdc8e904b34
ssdeep: 12288:rJKrGXxw2cev5cyRuEd5k8/YqY5RTRm4w7KrsAoty8qtHwWy:drXxwY5cIuETk8/Yqz4wmrs33ao
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T13ED4124023C45BB8E5AC8BB25A7D850847F65EC14726EB3D3FA871AD1FF278146E4A43
sha3_384: 771ff9694e261872f399acf7c02d4e4f8b3d8b94e353b7187365f7dedf449a36121366907737cbdb015a8fd2d8cf254c
ep_bytes: ff2500204000ffca000007000000ffb1
timestamp: 2057-01-04 00:54:24

Version Info:
Translation: 0x0000 0x04b0
Comments: 
CompanyName: 
FileDescription: NFCkeyboardEmulator
FileVersion: 2.8.0.0
InternalName: UIDtoKeyboard.exe
LegalCopyright: Copyright ©  2024
LegalTrademarks: 
OriginalFilename: UIDtoKeyboard.exe
ProductName: NFCkeyboardEmulator
ProductVersion: 2.8.0.0
Assembly Version: 2.8.0.0

Malware.AI.4088579077 also known as:

Bkav	W32.AIDetectMalware.CS
Lionic	Trojan.Win32.Generic.4!c
MicroWorld-eScan	Gen:Variant.MSILHeracles.149443
FireEye	Gen:Variant.MSILHeracles.149443
ALYac	Gen:Variant.MSILHeracles.149443
Cylance	unsafe
Sangfor	Trojan.Win32.Agent.Vs46
Cybereason	malicious.dc04a5
VirIT	Trojan.Win32.MSIL_Heur.A
Symantec	ML.Attribute.HighConfidence
TrendMicro-HouseCall	TROJ_GEN.R002H09C324
BitDefender	Gen:Variant.MSILHeracles.149443
Avast	Win32:TrojanX-gen [Trj]
Emsisoft	Gen:Variant.MSILHeracles.149443 (B)
VIPRE	Gen:Variant.MSILHeracles.149443
Ikarus	Trojan.IL.MSILZilla
Antiy-AVL	GrayWare/Win32.Wacapew
Microsoft	Trojan:Win32/Wacatac.B!ml
Arcabit	Trojan.MSILHeracles.D247C3
GData	Gen:Variant.MSILHeracles.149443
AhnLab-V3	Malware/Win.Generic.C5597481
MAX	malware (ai score=83)
Malwarebytes	Malware.AI.4088579077
Panda	Trj/Chgt.AD
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	PossibleThreat
AVG	Win32:TrojanX-gen [Trj]
DeepInstinct	MALICIOUS
alibabacloud	Trojan:Win/MSILHeracles

How to remove Malware.AI.4088579077?

Malware.AI.4088579077 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X