Malware.AI.4199039377 (file analysis)

The Malware.AI.4199039377 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.4199039377 virus can do?

Sample contains Overlay data
Presents an Authenticode digital signature
Authenticode signature is invalid
Anomalous binary characteristics

How to determine Malware.AI.4199039377?


File Info:
name: DD8C5907DCBE925BD114.mlw
path: /opt/CAPEv2/storage/binaries/76dcdcc827869964bee5c8ac7bb4bb039d684569cd948036eb0ce6050868a384
crc32: AD55E7F3
md5: dd8c5907dcbe925bd1147b5ed9575369
sha1: f3be14c43b5145a1ac9380ce205884aa67ba5a0c
sha256: 76dcdcc827869964bee5c8ac7bb4bb039d684569cd948036eb0ce6050868a384
sha512: c8e7c878bae069c12ab1070ca34e6041b2092ee2a42c1b2fd68c8b5350c87ae99fb3fb1240fec60169f94aad5300b6eb19c81e6e19bb36c23cbfb6353149438a
ssdeep: 12288:1lyfPDAwo8PT5vGTx/B5R8wYDNqrKYRFXpfNzOd5BxpCLdXH+wKNnu23:1lwboAgx/B5ewYsKUnNzO0LdXewKNnp3
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T109152A2377E58535E1B326305D78A6459A7AFD690E21C21F22BC0A4D0E75EB1BE38733
sha3_384: ac7595d26f32adfdff078b8310059a1a82d6347209e269efb3c584a43642abbfd4b537bc6a87ed097e8ae1f2f3255e78
ep_bytes: e855030000e96bfdffffccff259cc140
timestamp: 2012-09-24 02:30:08

Version Info:
CompanyName: Adobe Systems Incorporated
FileDescription: Eula display
FileVersion: 11.0.0.379
InternalName: Eula.exe
LegalCopyright: Copyright 2010-2012 Adobe Systems Incorporated.  All rights reserved.
OriginalFilename: Eula.exe
ProductName: EULA
ProductVersion: 11.0.0.379
Translation: 0x0409 0x04e4

Malware.AI.4199039377 also known as:

Lionic	Trojan.Win32.Generic.4!c
tehtris	Generic.Malware
ClamAV	Win.Malware.Ipamor-9870636-0
Malwarebytes	Malware.AI.4199039377
Sangfor	Trojan.Win32.Save.a
Alibaba	Worm:Win32/Pajetbin.b882d077
Cybereason	malicious.43b514
Cyren	W32/Pajetbin.G.gen!Eldorado
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (high confidence)
APEX	Malicious
Cynet	Malicious (score: 100)
SUPERAntiSpyware	Trojan.Agent/Gen-Kryptik
Avast	Win32:Malware-gen
McAfee-GW-Edition	BehavesLike.Win32.PUPXBC.ch
FireEye	Generic.mg.dd8c5907dcbe925b
Sophos	Generic ML PUA (PUA)
SentinelOne	Static AI – Suspicious PE
Jiangmin	Worm.AutoRun.awtu
Antiy-AVL	Trojan/Win32.TSGeneric
Google	Detected
Acronis	suspicious
McAfee	RDN/Autorun.worm.gen
VBA32	TScope.Trojan.MSIL
Ikarus	Trojan.Msil
MaxSecure	Trojan.Malware.121218.susgen
Fortinet	W32/AutoRun.9412!tr
AVG	Win32:Malware-gen
DeepInstinct	MALICIOUS
CrowdStrike	win/grayware_confidence_90% (W)

How to remove Malware.AI.4199039377?

Malware.AI.4199039377 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X