Malware.AI.4147429230 (file analysis)

The Malware.AI.4147429230 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.4147429230 virus can do?

The binary likely contains encrypted or compressed data.
The executable is likely packed with VMProtect
Anomalous binary characteristics

How to determine Malware.AI.4147429230?


File Info:
crc32: EC1F1455
md5: 5cd86c07f48e4b1003c06789b5bba999
name: 5CD86C07F48E4B1003C06789B5BBA999.mlw
sha1: a4521596a8125168df090d665e03b7b71ec0acd1
sha256: 488703a15e5de79d34207a498579abccb43402665c0dda88f968fd9590adff1b
sha512: 6b7fbed28d3e6112a1adea65432a5e645f3740630ba860a472bc2e94dbe478bf00f008b3bc03eff938ed8b0429feabd7d47f93f944266de68fd832f58aa391e9
ssdeep: 98304:/9uYgwPAFqxFrfpNFsJTjLNpPdEOW60oPbewbeDJAaUPXNM1J4jTl9N7p/eV4dM:/EJwbfQBpPdPW60oPqwqDJATd1zh9Y4
type: PE32+ executable (GUI) x86-64 Mono/.Net assembly, for MS Windows

Version Info:
Translation: 0x0000 0x04b0
LegalCopyright: Copyright xa9  2020
Assembly Version: 1.0.0.0
InternalName: GravityInjector.exe
FileVersion: 1.0.0.0
CompanyName: 
LegalTrademarks: 
Comments: 
ProductName: GravityInjector
ProductVersion: 1.0.0.0
FileDescription: GravityInjector
OriginalFilename: GravityInjector.exe

Malware.AI.4147429230 also known as:

K7AntiVirus	Trojan ( 00574e191 )
Lionic	Trojan.Win32.Ursu.4!c
Elastic	malicious (high confidence)
MicroWorld-eScan	Gen:Variant.Ursu.915504
ALYac	Gen:Variant.Ursu.915504
Cylance	Unsafe
Sangfor	Riskware.Win32.Wacapew.B
CrowdStrike	win/malicious_confidence_100% (W)
Alibaba	Packed:MSIL/VMProtect.070b7296
K7GW	Trojan ( 00574e191 )
Cybereason	malicious.7f48e4
Cyren	W64/Trojan.RARX-3366
Symantec	Trojan.Gen.MBT
ESET-NOD32	a variant of MSIL/Packed.VMProtect.C suspicious
APEX	Malicious
Avast	FileRepMalware [PUP]
Cynet	Malicious (score: 100)
BitDefender	Gen:Variant.Ursu.915504
Ad-Aware	Gen:Variant.Ursu.915504
Sophos	Mal/VMProtBad-A
VIPRE	Trojan.Win32.Generic!BT
TrendMicro	TROJ_GEN.R002C0RHA21
McAfee-GW-Edition	BehavesLike.Win64.TrojanDridex.vc
FireEye	Generic.mg.5cd86c07f48e4b10
Emsisoft	Gen:Variant.Ursu.915504 (B)
SentinelOne	Static AI – Malicious PE
Microsoft	Trojan:Win32/Wacatac.A!ml
GData	Gen:Variant.Ursu.915504
AhnLab-V3	Malware/Win.Generic.C4578080
McAfee	Artemis!5CD86C07F48E
MAX	malware (ai score=82)
Malwarebytes	Malware.AI.4147429230
Panda	Trj/CI.A
TrendMicro-HouseCall	TROJ_GEN.R002C0RHA21
Ikarus	Trojan.MSIL.Vmprotect
MaxSecure	Trojan.Malware.102569308.susgen
Fortinet	Adware/VMProtBad
AVG	FileRepMalware [PUP]
Paloalto	generic.ml

How to remove Malware.AI.4147429230?

Malware.AI.4147429230 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X