Malware.AI.4165713401 (file analysis)

The Malware.AI.4165713401 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.4165713401 virus can do?

The binary contains an unknown PE section name indicative of packing
The binary likely contains encrypted or compressed data.
Authenticode signature is invalid

How to determine Malware.AI.4165713401?


File Info:
name: FEEA86456FA9EBCDD5B9.mlw
path: /opt/CAPEv2/storage/binaries/48a9f3d0fca934cd0d0533beaa72893c0069076dbe8bdb1ce12a9601843bed6f
crc32: F26C8DD7
md5: feea86456fa9ebcdd5b9caf2017828ac
sha1: 4970b8ac91349df79d8486b0e8deaff73998bd82
sha256: 48a9f3d0fca934cd0d0533beaa72893c0069076dbe8bdb1ce12a9601843bed6f
sha512: f2d21a3e619f5b454ee7150e2288083ec04821cdd8e7dd15bd4dafdb66e605b7e1f7c4a048594df22b3375a02759b19b463252ea26ebfdc6591355d4699adb06
ssdeep: 49152:ozHVovBio9O/RGVpvDJAhrKz0zrB9QHx:Eovd9SK1Dz6
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T19395DF16B720D4B7C3324A34FCD690FA51DEAD20EF086C07B5A8BE1EBAB41D150D959B
sha3_384: c7c673525fe229ce345d4f99efa2c26ce1de7a009ab15b856c6ecd39350d76e51db7a80523937c4a46b049af36013b2d
ep_bytes: 558bec6aff6878585800681044580064
timestamp: 2021-05-10 15:44:59

Version Info:
CompanyName: WiseCleaner.com
FileDescription: Wise Force Deleter
FileVersion: 1.5.3.54
InternalName: Wise Force Deleter
LegalCopyright: WiseCleaner.com
LegalTrademarks: WiseCleaner.com
OriginalFilename: WiseDeleter.exe
ProductName: Wise Force Deleter
ProductVersion: 1.5
Translation: 0x0409 0x04e4

Malware.AI.4165713401 also known as:

Bkav	W32.AIDetect.malware1
Lionic	Trojan.Win32.Bulz.4!c
Elastic	malicious (high confidence)
Cynet	Malicious (score: 100)
FireEye	Generic.mg.feea86456fa9ebcd
ALYac	Gen:Variant.Babar.26485
Cylance	Unsafe
Zillya	Trojan.Kryptik.Win32.3152507
Sangfor	Trojan.Win32.Save.a
CrowdStrike	win/malicious_confidence_60% (W)
Alibaba	Trojan:Win32/Kryptik.357ac30f
K7GW	Trojan ( 00587de51 )
K7AntiVirus	Trojan ( 00587de51 )
Cyren	W32/Bulz.AR.gen!Eldorado
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win32/Kryptik.HLIN
APEX	Malicious
Paloalto	generic.ml
Kaspersky	HEUR:Trojan.Win32.Agent.gen
BitDefender	Gen:Variant.Babar.26485
MicroWorld-eScan	Gen:Variant.Babar.26485
Avast	Win32:AdwareX-gen [Adw]
Ad-Aware	Gen:Variant.Babar.26485
Sophos	Mal/Generic-R + Troj/Agent-BGVL
VIPRE	Trojan.Win32.Generic!BT
McAfee-GW-Edition	BehavesLike.Win32.Generic.tc
Emsisoft	Gen:Variant.Babar.26485 (B)
SentinelOne	Static AI – Malicious PE
GData	Gen:Variant.Babar.26485
Avira	HEUR/AGEN.1143574
MAX	malware (ai score=87)
Antiy-AVL	Trojan/Generic.ASMalwS.339FEF2
SUPERAntiSpyware	Trojan.Agent/Gen-Bulz
Microsoft	Trojan:Win32/Wacatac.B!ml
AhnLab-V3	Trojan/Win.Generic.R420000
McAfee	GenericRXAA-AA!FEEA86456FA9
VBA32	BScope.TrojanDownloader.Razy
Malwarebytes	Malware.AI.4165713401
Rising	Trojan.Kryptik!1.AA23 (CLOUD)
Yandex	Trojan.Agent!wK86O2kEqPw
Ikarus	Trojan.Win32.Crypt
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	W32/Kryptik.GZFR!tr
BitDefenderTheta	Gen:NN.ZexaCO.34114.1z0@aOAvSbpj
AVG	Win32:AdwareX-gen [Adw]
Panda	Trj/Genetic.gen

How to remove Malware.AI.4165713401?

Malware.AI.4165713401 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X