Malware

Malware.AI.4142841603 malicious file

Malware Removal

The Malware.AI.4142841603 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.4142841603 virus can do?

  • Injection (inter-process)
  • Injection (Process Hollowing)
  • Creates RWX memory
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX
  • Executed a process and injected code into it, probably while unpacking
  • Network activity detected but not expressed in API logs

How to determine Malware.AI.4142841603?



File Info:

crc32: 055821A7
md5: 3685575b0e7fe3b0b587c151e6c2af72
name: 3685575B0E7FE3B0B587C151E6C2AF72.mlw
sha1: 4a3e9611b2c6c9c0f1187d668cd6605fe12df50b
sha256: 090032079eb82e3be831e118e57b6113153defd66a991d1bb31fa25742434afe
sha512: e08a3fa321c24633a89c00726bf51701efd6976201468bd007c377edc652633d709748302521a9cabc5dca9299731c4581a8234cd13687f94f9cae26648ca3a4
ssdeep: 49152:sEcShYV9MN1+kpn7q67D1inCAF1yCKV0YnPB4mXaMcISDVZqaTCMWGAg+u6EsXu:/cma9MDnn7q67JinXFoEOPBfXrNV3GA
type: PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed


Version Info:

Translation: 0x0809 0x04b0

Malware.AI.4142841603 also known as:

BkavW32.AIDetectVM.malware1
Elasticmalicious (high confidence)
MicroWorld-eScanAIT:Trojan.GenericTKA.48
FireEyeGeneric.mg.3685575b0e7fe3b0
CAT-QuickHealTrojanPWS.AutoIT.Dclog.S
McAfeeArtemis!3685575B0E7F
CylanceUnsafe
AegisLabTrojan.Script.Generic.4!c
SangforMalware
K7AntiVirusTrojan ( 004bd4ff1 )
BitDefenderAIT:Trojan.GenericTKA.48
K7GWTrojan ( 004bd4ff1 )
Cybereasonmalicious.b0e7fe
CyrenW32/AutoIt.QE.gen!Eldorado
SymantecML.Attribute.HighConfidence
APEXMalicious
AvastScript:SNH-gen [Trj]
ClamAVWin.Malware.Generic-6646694-0
KasperskyHEUR:Trojan.Script.Generic
AlibabaTrojan:Win32/Scrarev.9280ef66
NANO-AntivirusTrojan.Script.AutoIt.estdtw
Ad-AwareAIT:Trojan.GenericTKA.48
EmsisoftAIT:Trojan.GenericTKA.48 (B)
F-SecureTrojan.TR/AutoIt.gfrer
TrendMicroTROJ_GEN.R03BC0DLC20
McAfee-GW-EditionBehavesLike.Win32.TrojanAitInject.vc
SophosML/PE-A + Troj/Autoit-BSC
IkarusTrojan.Win32.Injector
AviraTR/AutoIt.gfrer
MAXmalware (ai score=81)
Antiy-AVLTrojan[Dropper]/Win32.FrauDrop
MicrosoftTrojan:Win32/Scrarev.C
ArcabitAIT:Trojan.GenericTKA.48
ZoneAlarmHEUR:Trojan.Script.Generic
GDataAIT:Trojan.GenericTKA.48 (3x)
CynetMalicious (score: 100)
AhnLab-V3Trojan/Win32.Spnr.C547124
BitDefenderThetaAI:Packer.6A29D41418
ALYacAIT:Trojan.GenericTKA.48
VBA32Trojan.Scrarev
MalwarebytesMalware.AI.4142841603
PandaTrj/CI.A
ESET-NOD32a variant of Win32/Injector.Autoit.BKC
TrendMicro-HouseCallTROJ_GEN.R03BC0DLC20
RisingTrojan.Injector/Autoit!1.C5B5 (CLASSIC)
eGambitUnsafe.AI_Score_95%
FortinetW32/Autoit.BKC!tr
AVGScript:SNH-gen [Trj]
Paloaltogeneric.ml
CrowdStrikewin/malicious_confidence_100% (W)
Qihoo-360Win32/TrojanSpy.Masad.HgIASOQA

How to remove Malware.AI.4142841603?

Malware.AI.4142841603 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment