How to remove “Malware.AI.4137236246”?

The Malware.AI.4137236246 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.4137236246 virus can do?

Sample contains Overlay data
Reads data out of its own binary image
Authenticode signature is invalid

How to determine Malware.AI.4137236246?


File Info:
name: CE7BF058D099593ED8F9.mlw
path: /opt/CAPEv2/storage/binaries/e38890471dbdefb54c19a1e8b1af944fafde0ce00d6e9ccfefa27c87e3f7efaa
crc32: 1D18C675
md5: ce7bf058d099593ed8f98a81900ee7b7
sha1: 9f2f11c7fc54c2cc399ba8df281b26d50a6f514f
sha256: e38890471dbdefb54c19a1e8b1af944fafde0ce00d6e9ccfefa27c87e3f7efaa
sha512: 14f6a5d82b92f29599150e7f5faa33f4343e0bc8571a2efc389396859ada3a59323711c03ea5662c669daf23e823aa5cf4943725352590c63484af3d6c3ecc3c
ssdeep: 6144:Cm2BP6uRE7YFLw6OefhOaAnLHeYyvz1uLY+DcU2GC11K79eLM:C/ZRCaE3efTALHeYyL6Vq11K7AM
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T18D76BF02F2E591BADEA7163018765B359BBD7D0247629A47E334FE1E3C31741E92930E
sha3_384: d1f1953b70428f8c96c7b19e9a4b9ef16a43ec962b791655b912f240a781b28c49999c017e6e15093c38aeb4d072f39d
ep_bytes: 558bec6aff68f818b500688812b40064
timestamp: 2006-02-02 02:45:13

Version Info:
Comments: 
CompanyName: Sysinternals - www.sysinternals.com
FileDescription: Rootkit detection utility
FileVersion: 1.70
InternalName: 
LegalCopyright: Copyright (C) 2005-2006 Bryce Cogswell and Mark Russinovich
LegalTrademarks: 
OriginalFilename: 
PrivateBuild: 
ProductName: Sysinternals Rootkitrevealer
ProductVersion: 1.70
SpecialBuild: 
Translation: 0x0409 0x04b0

Malware.AI.4137236246 also known as:

Bkav	W32.AIDetectMalware
Lionic	Trojan.Win32.Swisyn.4!c
Elastic	malicious (high confidence)
Cynet	Malicious (score: 100)
FireEye	Generic.mg.ce7bf058d099593e
CAT-QuickHeal	Trojan.Swisyn.OD5
Skyhigh	BehavesLike.Win32.BadFile.wz
McAfee	Artemis!CE7BF058D099
Cylance	unsafe
VIPRE	Trojan.GenericKD.71768688
Sangfor	Suspicious.Win32.Save.ins
CrowdStrike	win/malicious_confidence_90% (W)
Symantec	ML.Attribute.HighConfidence
BitDefender	Trojan.GenericKD.71768688
NANO-Antivirus	Trojan.Win32.Swisyn.eyucsj
MicroWorld-eScan	Trojan.GenericKD.71768688
Avast	Win32:Malware-gen
Sophos	Generic Reputation PUA (PUA)
Emsisoft	Trojan.GenericKD.71768688 (B)
Ikarus	Trojan.Win32
Google	Detected
Antiy-AVL	Trojan/Win32.Swisyn
Microsoft	Trojan:Win32/Wacatac.B!ml
Arcabit	Trojan.Generic.D4471A70
GData	Win32.Trojan.PSE.C2K26Z
Varist	W32/Swisyn.R.gen!Eldorado
ALYac	Trojan.GenericKD.71768688
MAX	malware (ai score=81)
Malwarebytes	Malware.AI.4137236246
TrendMicro-HouseCall	TROJ_GEN.R002H0CBA24
Rising	Trojan.Generic@AI.100 (RDML:acFgU8PxT4k+ZcaCGRE7fQ)
Yandex	Trojan.Agent!7Rm5C4DE5j0
SentinelOne	Static AI – Malicious PE
MaxSecure	Trojan.Malware.121218.susgen
Fortinet	W32/Swisyn.R!tr
AVG	Win32:Malware-gen
Cybereason	malicious.8d0995
DeepInstinct	MALICIOUS

How to remove Malware.AI.4137236246?

Malware.AI.4137236246 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X