How to remove “Malware.AI.4163497453”?

The Malware.AI.4163497453 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.4163497453 virus can do?

The binary likely contains encrypted or compressed data.
Network activity detected but not expressed in API logs
Anomalous binary characteristics

How to determine Malware.AI.4163497453?


File Info:
crc32: EC7604ED
md5: 20bba2e676122396d6435aeec351544b
name: 20BBA2E676122396D6435AEEC351544B.mlw
sha1: 99a785c74833de264b671a13fc9784d450197ac6
sha256: c37eb96118bd335202343a74f1355253c716dc4675f3e292b69980e5e157f595
sha512: 18c355badba0564a8c37d413842dde01198ed9f5326f4b683730cb0d11def231fb51912227a4f394799107c759a5a8d02f11b47c35d5ebd7246d6f1fb045f40c
ssdeep: 12288:nA1zg/Alh5BL7bDYab8emMomQpcsaxIbuJXhkNYN1gXkRhcBIZupiE9SSt4sFMEB:nA1U/c93bJjmMJQpc/XVPhWsuAEUSt4i
type: PE32 executable (GUI) Intel 80386, for MS Windows, Nullsoft Installer self-extracting archive

Version Info:
LegalCopyright: xc3x201axc2xa9 Copyright 2007, Hercules. All rights reserved.
FileVersion: 5.8.2.0
CompanyName: Hercules
LegalTrademarks: xc3x201axc2xa9 Copyright 2007, Hercules. All rights reserved.
Comments: NToolbox
ProductName: Station Pack
FileDescription: Station Utility
Translation: 0x0409 0x0000

Malware.AI.4163497453 also known as:

Bkav	W32.AIDetect.malware2
K7AntiVirus	Trojan ( 0056fbbc1 )
Elastic	malicious (high confidence)
MicroWorld-eScan	Trojan.Ransom.TroldeshKD.12615773
ALYac	Trojan.Ransom.TroldeshKD.12615773
Cylance	Unsafe
Sangfor	Trojan.Win32.Save.a
CrowdStrike	win/malicious_confidence_60% (D)
BitDefender	Trojan.Ransom.TroldeshKD.12615773
K7GW	Trojan ( 0056fbbc1 )
Cybereason	malicious.676122
Symantec	Trojan Horse
ESET-NOD32	multiple detections
APEX	Malicious
Paloalto	generic.ml
Cynet	Malicious (score: 100)
Kaspersky	Trojan-Ransom.Win32.Foreign.npzf
Alibaba	Ransom:Win32/Foreign.1ca12b63
NANO-Antivirus	Trojan.Win32.Ursu.eyvgyh
Tencent	Win32.Trojan.Foreign.Hqbz
Ad-Aware	Trojan.Ransom.TroldeshKD.12615773
Sophos	Generic ML PUA (PUA)
VIPRE	Trojan.Win32.Generic!BT
TrendMicro	TROJ_INJECTOR_HA29005E.UVPM
McAfee-GW-Edition	BehavesLike.Win32.Dropper.bc
FireEye	Generic.mg.20bba2e676122396
Emsisoft	Trojan.Ransom.TroldeshKD.12615773 (B)
SentinelOne	Static AI – Malicious PE
Webroot	W32.Trojan.Gen
Avira	HEUR/AGEN.1127494
Antiy-AVL	Trojan/Generic.ASMalwS.2516555
Arcabit	Trojan.Ransom.TroldeshKD.DC0805D
ZoneAlarm	Trojan-Ransom.Win32.Foreign.npzf
GData	Trojan.Ransom.TroldeshKD.12615773
AhnLab-V3	Trojan/Win32.Scar.R213989
McAfee	Artemis!20BBA2E67612
MAX	malware (ai score=98)
Malwarebytes	Malware.AI.4163497453
TrendMicro-HouseCall	TROJ_INJECTOR_HA29005E.UVPM
Yandex	Trojan.Injector!+nh0G0i6a3U
Fortinet	MSIL/Injector.THV!tr
Panda	Trj/CI.A
Qihoo-360	Win32/Trojan.Foreign.HoMASSEA

How to remove Malware.AI.4163497453?

Malware.AI.4163497453 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X