Malware

Malware.AI.4142700781 information

Malware Removal

The Malware.AI.4142700781 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.4142700781 virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Uses Windows utilities for basic functionality
  • CAPE extracted potentially suspicious content
  • Unconventionial language used in binary resources: Russian
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • CAPE detected the shellcode patterns malware family
  • Checks for the presence of known devices from debuggers and forensic tools
  • Checks for the presence of known devices from debuggers and forensic tools
  • Enumerates physical drives
  • Deletes executed files from disk
  • Yara detections observed in process dumps, payloads or dropped files

How to determine Malware.AI.4142700781?



File Info:

name: 5FD46048A76757672893.mlw
path: /opt/CAPEv2/storage/binaries/e61b37616462973c04541a775334026ac217c651948f055b6a8dcd8e7d3bf65c
crc32: 42B7A855
md5: 5fd46048a7675767289368bf0d77b852
sha1: 57a3f1264ba23520027ebac9b777843e593469e4
sha256: e61b37616462973c04541a775334026ac217c651948f055b6a8dcd8e7d3bf65c
sha512: 70ddcb588a2bc734f82bee6c563624dcc4800faf8aac2ae2bb8e9efb21995db53899a4b83da9055dda3ea14bc66638640302c3b0c1b307125026b0f681233e8c
ssdeep: 3072:KUzqI8u5oAMGTKEEjlDYDlJFsi9z0QFIb:lMGewBg
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T16BB3CF436BE81860FBB74730BC7543A45529BCC5B4B4DD3EA69640DF2CE26608DA27B3
sha3_384: 7335aea0b66370b35279c9205a9da86395960c7557ebca5f2c855a0811cf80e4dbc1a6ecadb46575fbd2a69f9f573067
ep_bytes: 832d00f040000174068b0d02f0400038
timestamp: 1992-06-19 22:22:17


Version Info:

0: [No Data]

Malware.AI.4142700781 also known as:

BkavW32.AIDetectMalware
LionicTrojan.Win32.Generic.lMRo
MicroWorld-eScanGen:Variant.Renos.96
ClamAVWin.Downloader.112413-1
FireEyeGeneric.mg.5fd46048a7675767
CAT-QuickHealTrojan.Renos.PG
SkyhighBehavesLike.Win32.Eggnog.cc
ALYacGen:Variant.Renos.96
Cylanceunsafe
ZillyaTrojan.Jorik.Win32.5628
SangforSuspicious.Win32.Save.a
CrowdStrikewin/malicious_confidence_100% (D)
AlibabaTrojanDownloader:Win32/CodecPack.da5fc2b7
K7GWTrojan-Downloader ( 004b8fd51 )
K7AntiVirusTrojan ( 005485311 )
ArcabitTrojan.Renos.96
BitDefenderThetaAI:Packer.24D2B8EF22
VirITTrojan.Win32.FakeAV.OZW
SymantecML.Attribute.HighConfidence
Elasticmalicious (high confidence)
ESET-NOD32Win32/TrojanDownloader.FakeAlert.BBT
APEXMalicious
CynetMalicious (score: 100)
KasperskyTrojan-Downloader.Win32.CodecPack.auxv
BitDefenderGen:Variant.Renos.96
NANO-AntivirusTrojan.Win32.Kryptik.chkky
ViRobotTrojan.Win32.Renos.113664
AvastWin32:Downloader-HJL [Trj]
TencentMalware.Win32.Gencirc.114b6c7b
SophosMal/FakeAV-NJ
F-SecureTrojan.TR/Crypt.XPACK.Gen2
DrWebTrojan.DownLoader3.4212
VIPREGen:Variant.Renos.96
TrendMicroTROJ_KRYPTK.SMCZ
Trapminemalicious.high.ml.score
EmsisoftGen:Variant.Renos.96 (B)
IkarusTrojan-Downloader.Win32.CodecPack
JiangminTrojan/Generic.fhao
WebrootW32.Renos.Gen
GoogleDetected
AviraTR/Crypt.XPACK.Gen2
Antiy-AVLTrojan[Downloader]/Win32.CodecPack.sjt
KingsoftWin32.Troj.Undef.a
XcitiumTrojWare.Win32.Kryptik.BBTC@3gm7sg
MicrosoftTrojanDownloader:Win32/Renos.PG
ZoneAlarmTrojan-Downloader.Win32.CodecPack.auxv
GDataGen:Variant.Renos.96
VaristW32/FakeAlert.NZ.gen!Eldorado
AhnLab-V3Win-Trojan/Fakeav42.Gen
Acronissuspicious
McAfeeDownloader-CEW.ay
MAXmalware (ai score=100)
VBA32TScope.Malware-Cryptor.SB
MalwarebytesMalware.AI.4142700781
PandaTrj/Renos.gen
TrendMicro-HouseCallTROJ_KRYPTK.SMCZ
RisingDownloader.Renos!8.1D0 (TFE:2:2cq3qTMeE1V)
YandexTrojan.GenAsa!O0QY0yIU7cA
SentinelOneStatic AI – Malicious PE
MaxSecureTrojan.CodecPack.Gen
FortinetW32/Delf.AR!tr
AVGWin32:Downloader-HJL [Trj]
Cybereasonmalicious.64ba23
DeepInstinctMALICIOUS

How to remove Malware.AI.4142700781?

Malware.AI.4142700781 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment