Malware.AI.4167246228 removal guide

The Malware.AI.4167246228 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.4167246228 virus can do?

CAPE extracted potentially suspicious content
The binary likely contains encrypted or compressed data.
Authenticode signature is invalid

How to determine Malware.AI.4167246228?


File Info:
name: F6DEA94DE4AA52A31831.mlw
path: /opt/CAPEv2/storage/binaries/2108792c88d04b4b1f332a4318c12c273a92d8a294254a072ca26bd241d830f1
crc32: AE710D61
md5: f6dea94de4aa52a318311b174b495e5a
sha1: 1a5a9e77cf9cb9812a6d34a6f97a6f6dbc22dc43
sha256: 2108792c88d04b4b1f332a4318c12c273a92d8a294254a072ca26bd241d830f1
sha512: f0e2ddf4eeccae8225ec6a864353f9a034ae70b88e02d78b958e1645e772bf0526899e6e55b3596b9c6310bd481f0d092c13cf2fb65b0d9530547f2f2e7e867f
ssdeep: 12288:pKbKT3tVbMbwMT60fCFXL080PSwbQnG7BHEIS:mK5pMbITe
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T166B49E637B918CD8C41A3276147AD940B3B333DBB564CB0E729A5B2D0E631871B5FA4E
sha3_384: 52c3a9be9261808935b1bb1c5e9dce45472be1c5ab91440af67d6a92fa368b4520092575392fd525da0e63ac1f198227
ep_bytes: ff250020400000000000000000000000
timestamp: 1997-01-24 01:36:17

Version Info:
Translation: 0x0000 0x04b0
Comments: aqozuzuted
CompanyName: etusawaderanix
FileDescription: ivuyopoz
FileVersion: 485.6398.8089.3210
InternalName: cgf.exe
LegalCopyright: Copyright © 9006
OriginalFilename: cgf.exe
ProductName: ivuyopoz
ProductVersion: 485.6398.8089.3210
Assembly Version: 0.0.0.0

Malware.AI.4167246228 also known as:

Bkav	W32.AIDetectNet.01
MicroWorld-eScan	Trojan.MSIL.Basic.8.Gen
FireEye	Generic.mg.f6dea94de4aa52a3
Cylance	Unsafe
VIPRE	Trojan.MSIL.Basic.8.Gen
Sangfor	Trojan.Win32.Save.a
K7AntiVirus	Trojan ( 0054e00e1 )
BitDefender	Trojan.MSIL.Basic.8.Gen
CrowdStrike	win/malicious_confidence_90% (W)
BitDefenderTheta	Gen:NN.ZemsilF.34682.Em0@aS1Atpn
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (high confidence)
ESET-NOD32	a variant of MSIL/Kryptik.RPR
APEX	Malicious
Kaspersky	HEUR:Trojan-Spy.MSIL.Noon.gen
Alibaba	Trojan:Win32/Malmail.ali1000112
Cynet	Malicious (score: 100)
Rising	Spyware.Noon!8.E7C9 (CLOUD)
Ad-Aware	Trojan.MSIL.Basic.8.Gen
Sophos	Mal/Generic-S
McAfee-GW-Edition	Artemis
Trapmine	malicious.high.ml.score
Emsisoft	Trojan.MSIL.Basic.8.Gen (B)
Ikarus	Trojan.MSIL.Crypt
Avira	HEUR/AGEN.1232146
MAX	malware (ai score=81)
Microsoft	Trojan:Win32/Wacatac.B!ml
Arcabit	Trojan.MSIL.Basic.8.Gen
GData	Trojan.MSIL.Basic.8.Gen
Google	Detected
AhnLab-V3	HEUR/Fakon.apf.X1353
Acronis	suspicious
ALYac	Trojan.MSIL.Basic.8.Gen
Malwarebytes	Malware.AI.4167246228
Panda	Trj/GdSda.A
Tencent	Msil.Trojan-Spy.Noon.Dtgl
SentinelOne	Static AI – Malicious PE
Fortinet	MSIL/Kryptik.RZC!tr
AVG	Win32:Trojan-gen
Cybereason	malicious.de4aa5
Avast	Win32:Trojan-gen

How to remove Malware.AI.4167246228?

Malware.AI.4167246228 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X