Malware.AI.4117079906 removal tips

The Malware.AI.4117079906 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.4117079906 virus can do?

Presents an Authenticode digital signature
Dynamic (imported) function loading detected
Authenticode signature is invalid

How to determine Malware.AI.4117079906?


File Info:
name: 2EB02EDB50382EC908F0.mlw
path: /opt/CAPEv2/storage/binaries/f4d908779fbe4b3138377d768c7718d4cd08118469b6998b7c979d37a1fa4910
crc32: 3BCBB6D2
md5: 2eb02edb50382ec908f0d38b53353b2c
sha1: 177574b498e027c192abf6e9ad3cea5a691928a8
sha256: f4d908779fbe4b3138377d768c7718d4cd08118469b6998b7c979d37a1fa4910
sha512: a28011825314c75db9a9940cf486e2a0f969c6cfe7646b8d23e0abfa2cbc24242326377601a878a71eebbc9a29294ec18dd4463263360cafbf47431f6eda4461
ssdeep: 3072:1FFVa7imiGtO/cgDaCRBqbaizckNhhlytvKwqKd21TaupDQrDfR/eDyRbzA9OkPC:1F/ksUly8sE35z2qdwldAHCVYblG
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T182845C107BD88A27E6BF17BAE0B3160447B5F10AE565EB4E688C25F91D53340AD123BF
sha3_384: 428373caa74a6f2dc6a09cff82b109a344bedb563ee3adf15fa30c667fa9ad9874766f78afd79a496b22c3a39de07c4c
ep_bytes: ff25b023460000000000000000008423
timestamp: 2016-12-13 19:21:46

Version Info:
Translation: 0x0000 0x04b0
CompanyName: Greenway Health
FileDescription: AuditIntergyDbBackupTask
FileVersion: 1.0.0.0
InternalName: AuditIntergyDbBackupTask.exe
LegalCopyright: Copyright © Greenway Health 2016
OriginalFilename: AuditIntergyDbBackupTask.exe
ProductName: AuditIntergyDbBackupTask
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

Malware.AI.4117079906 also known as:

Lionic	Trojan.Win32.Dapato.b!c
MicroWorld-eScan	Gen:Variant.Razy.123691
FireEye	Generic.mg.2eb02edb50382ec9
ALYac	Gen:Variant.Razy.123691
Cylance	Unsafe
VIPRE	Trojan.Win32.Generic!BT
BitDefender	Gen:Variant.Razy.123691
Arcabit	Trojan.Razy.D1E32B
Symantec	Trojan.Gen.2
APEX	Malicious
Kaspersky	Trojan-Dropper.Win32.Dapato.oqaw
Alibaba	TrojanDropper:Win32/Dapato.ba7011ed
Ad-Aware	Gen:Variant.Razy.123691
Emsisoft	Gen:Variant.Razy.123691 (B)
Comodo	Application.MSIL.Dotdo.AA@6l58or
Zillya	Dropper.DapatoCRTD.Win32.6121
Sophos	Mal/Generic-S
SentinelOne	Static AI – Malicious PE
Jiangmin	TrojanDropper.Dapato.vvx
Avira	HEUR/AGEN.1127305
Kingsoft	Win32.Troj.Undef.(kcloud)
Microsoft	Trojan:Win32/Wacatac.B!ml
GData	Gen:Variant.Razy.123691
AhnLab-V3	Dropper/Win32.Dapato.R201759
MAX	malware (ai score=89)
VBA32	TrojanDropper.Dapato
Malwarebytes	Malware.AI.4117079906
Panda	Trj/CI.A
Tencent	Malware.Win32.Gencirc.10bbf7c8
Ikarus	Trojan-Dropper.Win32.Dapato

How to remove Malware.AI.4117079906?

Malware.AI.4117079906 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X