Malware

About “Malware.AI.4192680112” infection

Malware Removal

The Malware.AI.4192680112 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.4192680112 virus can do?

  • Unconventionial binary language: Russian
  • Unconventionial language used in binary resources: Russian
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid

How to determine Malware.AI.4192680112?



File Info:

name: 6332DA10F7721CE95EAA.mlw
path: /opt/CAPEv2/storage/binaries/8f7cf81d8bfb3780b48693020a18071a9fd382d06b0b7932226b4d583b03c3af
crc32: 6F079E71
md5: 6332da10f7721ce95eaac09c8d9a143e
sha1: dddfbde2eab5862c473470a6ded4f974ea648a8d
sha256: 8f7cf81d8bfb3780b48693020a18071a9fd382d06b0b7932226b4d583b03c3af
sha512: db333e97ffd2bf144a87c29dd4d123af14e47f71dc6e12e3751669edd76f338b3610030a5d49762e46da92a04fd48ff980cf9a3e515cfe58b58c7486cffa446e
ssdeep: 24576:xROL8HD9PBLF/ivwW5QjKX+s7gSS9BxrLsMv+Rvr:x+2pp+X+QfS9B45r
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T192157D21B7D28037D2731B389D7BA2D55929BE201D38A45F3AE81F8C5E7A6522C343D7
sha3_384: bab047c9828d17e8239f2e1ebd3a18163108c5a66b0b84f640e518672afd8483e1b9b16ad62e01dcb035283d18b4d733
ep_bytes: 558bec83c4f0b800114c00e85858f4ff
timestamp: 1992-06-19 22:22:17


Version Info:

CompanyName: APSVideo
FileDescription: Video Interface Codec
FileVersion: 1.0.3.0
InternalName: Video Interface
LegalCopyright: APSVideo (C) Copyright
LegalTrademarks: Video Interface
OriginalFilename: Video Interface
ProductName: 
ProductVersion: 1.0.3.0
Translation: 0x0419 0x04e3

Malware.AI.4192680112 also known as:

LionicTrojan.Win32.Redcontrole.m!c
Elasticmalicious (high confidence)
CynetMalicious (score: 100)
FireEyeGeneric.mg.6332da10f7721ce9
SkyhighBehavesLike.Win32.Dropper.dh
McAfeeRDN/Generic BackDoor
Cylanceunsafe
VIPREGen:Trojan.Keylogger.4G0@amAX5pnc
SangforTrojan.Win32.Save.a
CrowdStrikewin/malicious_confidence_100% (W)
AlibabaBackdoor:Win32/Redcontrole.51d5cede
K7GWTrojan ( 00500c351 )
K7AntiVirusTrojan ( 00500c351 )
BitDefenderThetaGen:NN.ZelphiF.36744.4G0@amAX5pnc
SymantecTrojan Horse
ESET-NOD32a variant of Win32/Redcontrole.W
KasperskyBackdoor.Win32.Delf.arko
BitDefenderGen:Trojan.Keylogger.4G0@amAX5pnc
NANO-AntivirusTrojan.Win32.Delf.eksbfq
MicroWorld-eScanGen:Trojan.Keylogger.4G0@amAX5pnc
AvastWin32:TrojanX-gen [Trj]
TencentMalware.Win32.Gencirc.114e2b9b
EmsisoftGen:Trojan.Keylogger.4G0@amAX5pnc (B)
F-SecureHeuristic.HEUR/AGEN.1330627
DrWebBackDoor.Siggen2.4248
ZillyaBackdoor.Delf.Win32.20066
TrendMicroTROJ_GEN.R002C0CH919
SophosMal/Generic-R
SentinelOneStatic AI – Suspicious PE
JiangminBackdoor.Delf.sbq
WebrootW32.Malware.Gen
AviraHEUR/AGEN.1330627
Antiy-AVLTrojan[Backdoor]/Win32.Delf
Kingsoftmalware.kb.a.993
XcitiumMalware@#2ep79bfpysfb8
ArcabitTrojan.Keylogger.ED84D0
ZoneAlarmBackdoor.Win32.Delf.arko
GDataGen:Trojan.Keylogger.4G0@amAX5pnc
GoogleDetected
ALYacSpyware.Banker.Delf
MAXmalware (ai score=100)
MalwarebytesMalware.AI.4192680112
PandaTrj/CI.A
TrendMicro-HouseCallTROJ_GEN.R002C0CH919
RisingBackdoor.Delf!8.780 (TFE:5:ZxUMC1ywvnR)
YandexTrojan.GenAsa!IDFBrqvanDY
IkarusTrojan.Win32.Redcontrole
MaxSecureTrojan.Malware.10336823.susgen
FortinetW32/Redcontrole.W!tr
AVGWin32:TrojanX-gen [Trj]
Cybereasonmalicious.2eab58
DeepInstinctMALICIOUS

How to remove Malware.AI.4192680112?

Malware.AI.4192680112 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment