Malware.AI.4200896782 removal guide

The Malware.AI.4200896782 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.4200896782 virus can do?

Dynamic (imported) function loading detected
CAPE extracted potentially suspicious content
Authenticode signature is invalid

How to determine Malware.AI.4200896782?


File Info:
name: B28161960E49AC7A2A69.mlw
path: /opt/CAPEv2/storage/binaries/9630a34982ddbec0c96ee6a119cb3156ac81c19918ce2faa56c7f261f881152a
crc32: EF0D02E5
md5: b28161960e49ac7a2a6935814cc318e0
sha1: eeb8401ab9960f92f9228a829a81249c4c450c6f
sha256: 9630a34982ddbec0c96ee6a119cb3156ac81c19918ce2faa56c7f261f881152a
sha512: b077b0529df9b3d8f993cefeaeebd059c455149a96465b594db32bf8fff468fb57bd5f682def2e611a63029cce54fdd35dcc52151e940853b940d1f871287f72
ssdeep: 6144:uayYr21KRv0ZXH4IRBvLSBoyYh+DtEQQHkSgFgDsGzC8wmWQd6aNUN:ui28R8H4+lLSBoy2ktFW/gFHoEod6IG
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1BEC4371A69670404D9F52B3F0295B84802AE7F772B21F95F1B66F5890AB378C1F09EF1
sha3_384: fc76d782a8f076b7f7c6094c4dcf5e74a93601a5504fcccb6b5d6a7766ae6e39dc74cad5a3e27d7c1c0f818296928d73
ep_bytes: ff250020400000000000000000000000
timestamp: 2008-08-25 02:48:16

Version Info:
Translation: 0x0000 0x04b0
Comments: 
CompanyName: 
FileDescription: Assembly Management Utility
FileVersion: 1.2019.06.11
InternalName: Assembly Management Utility.exe
LegalCopyright: Copyright ©  2019
LegalTrademarks: 
OriginalFilename: Assembly Management Utility.exe
ProductName: Assembly Management Utility
ProductVersion: 1.2019.06.11
Assembly Version: 1.2020.6.11

Malware.AI.4200896782 also known as:

MicroWorld-eScan	Trojan.GenericKD.38110127
FireEye	Generic.mg.b28161960e49ac7a
Malwarebytes	Malware.AI.4200896782
Cybereason	malicious.ab9960
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of MSIL/Kryptik.ADOG
APEX	Malicious
Kaspersky	HEUR:Trojan-PSW.MSIL.Agensla.gen
BitDefender	Trojan.GenericKD.38110127
Avast	Win32:PWSX-gen [Trj]
Ad-Aware	Trojan.GenericKD.38110127
Emsisoft	Trojan.GenericKD.38110127 (B)
Sophos	Generic ML PUA (PUA)
Ikarus	Trojan-Spy.FormBook
GData	Trojan.GenericKD.38110127
Avira	TR/Dropper.Gen
Kingsoft	Win32.PSWTroj.Undef.(kcloud)
Microsoft	Trojan:Win32/Sabsik.FL.B!ml
Cynet	Malicious (score: 100)
AhnLab-V3	Trojan/Win.AgentTesla.C4789261
BitDefenderTheta	Gen:NN.ZemsilF.34294.Im1@aiqwO!p
ALYac	Spyware.AgentTesla
MAX	malware (ai score=85)
VBA32	TScope.Trojan.MSIL
Cylance	Unsafe
SentinelOne	Static AI – Malicious PE
AVG	Win32:PWSX-gen [Trj]
Panda	Trj/GdSda.A
CrowdStrike	win/malicious_confidence_100% (D)

How to remove Malware.AI.4200896782?

Malware.AI.4200896782 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X