Malware

Malware.AI.4126326221 information

Malware Removal

The Malware.AI.4126326221 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.4126326221 virus can do?

  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • Dynamic (imported) function loading detected
  • Reads data out of its own binary image
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid
  • Harvests cookies for information gathering

Related domains:

wpad.local-net

How to determine Malware.AI.4126326221?



File Info:

name: 6814184ECAFF67B5E4A1.mlw
path: /opt/CAPEv2/storage/binaries/2570f6880cda2d3ee0518baeb771f8677332933d83352608cb89e751d984b7d8
crc32: 4B20DB2A
md5: 6814184ecaff67b5e4a1a2941ec4f9c3
sha1: fe9ac7283ea033ead69a79e610ba62bb9e5857ae
sha256: 2570f6880cda2d3ee0518baeb771f8677332933d83352608cb89e751d984b7d8
sha512: 6893203ec7f5242e8b1355cc013f137b0c33c6b935cca6139a45aeb11a72b16ba56d6b116a784b21060177799d9fb288307a84b59f8439d2bcee79aeac06cd00
ssdeep: 98304:r6cvCwr/lKEi86dFX7c9ufSMY8f/504rVBs/QQrdMZVAU:rDCwr/4y6d5W+G83W4roZdmVV
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T127263302B5D800B2F1B35A742AB0BA64563FBC244276458F57EC261E4F7B4D09B36BB7
sha3_384: bd5e3ab2c4fccd4be932ef6605337345a91f2f90ba4ec7742938763730d76a460196f3c0d8577bf14adb909489d05a1c
ep_bytes: e808050000e988feffff3b0d58254300
timestamp: 2020-11-12 11:48:50


Version Info:

0: [No Data]

Malware.AI.4126326221 also known as:

LionicTrojan.Win32.Chapak.trPP
Elasticmalicious (high confidence)
FireEyeGeneric.mg.6814184ecaff67b5
MalwarebytesMalware.AI.4126326221
K7AntiVirusUnwanted-Program ( 005612301 )
K7GWUnwanted-Program ( 005612301 )
Cybereasonmalicious.ecaff6
SymantecPUA.Gen.2
ESET-NOD32a variant of Win32/CMDOW.B potentially unsafe
CynetMalicious (score: 100)
Kasperskynot-a-virus:RiskTool.Win32.Cmdow.b
NANO-AntivirusRiskware.Win32.Cmdow.dmjuol
SophosGeneric PUA PO (PUA)
McAfee-GW-EditionBehavesLike.Win32.Generic.rc
GridinsoftRansom.Win32.Wacatac.sa
McAfeeArtemis!6814184ECAFF
VBA32Trojan.Wacatac
APEXMalicious
SentinelOneStatic AI – Suspicious PE
FortinetRiskware/CMDOW

How to remove Malware.AI.4126326221?

Malware.AI.4126326221 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment