Malware.AI.4201785306 information

The Malware.AI.4201785306 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.4201785306 virus can do?

The binary contains an unknown PE section name indicative of packing
The binary likely contains encrypted or compressed data.
The executable is compressed using UPX
Authenticode signature is invalid

How to determine Malware.AI.4201785306?


File Info:
name: FBD393D2C2EAA5FD8CA0.mlw
path: /opt/CAPEv2/storage/binaries/7ce7471bba489b29bb1c6def4d1a0b0b8bfa995a236a912c4af4d5f4307d4e7c
crc32: 379064D6
md5: fbd393d2c2eaa5fd8ca06e02257d68ff
sha1: ff96eb58ab319dc64b8c2b9c5524bc7c55cc5aad
sha256: 7ce7471bba489b29bb1c6def4d1a0b0b8bfa995a236a912c4af4d5f4307d4e7c
sha512: 8738f8139dde99e1100040caeeec98fabbe40e1a5f7558f629dcaf8a74704344e163f90532185efb8e1aaf754a76c76220c0d71f67acb6eadf7d8ce1af6b9221
ssdeep: 6144:BXTNMUJz8/ALv6e3tJl/c04lX+ALDok73/oJGy2oNOUXz3nLthc:BPtLi8Je0MBok73KGy2oUUDXvc
type: PE32+ executable (console) x86-64, for MS Windows
tlsh: T19C6423E1414E9D55F81372F6123F1638901DF39C086B9BACBCA0890E87DD669A3643EF
sha3_384: 90fcf72197bb2bb1db55e2183f442d96ac54763e31fc0c91cffef74dc56e034bf74597690ec636fac6b8c38e15ba138e
ep_bytes: 53565755488d352550fbff488dbe00c0
timestamp: 2019-11-26 18:50:52

Version Info:
0: [No Data]

Malware.AI.4201785306 also known as:

Lionic	Riskware.Win64.Miner.1!c
FireEye	Generic.mg.fbd393d2c2eaa5fd
McAfee	Artemis!FBD393D2C2EA
Cylance	Unsafe
K7AntiVirus	Trojan ( 0055e2701 )
Alibaba	RiskWare:Win64/Miner.f88a3de4
K7GW	Trojan ( 0055e2701 )
Cybereason	malicious.2c2eaa
Symantec	Miner.Bitcoinminer
ESET-NOD32	a variant of Win64/CoinMiner.XD
APEX	Malicious
Avast	Win64:Trojan-gen
Kaspersky	not-a-virus:HEUR:RiskTool.Win64.Miner.gen
Sophos	XMR-Stak Miner (PUA)
TrendMicro	Coinminer_MALXMR.SMSTAK-WIN64
McAfee-GW-Edition	BehavesLike.Win64.PUP.fc
GData	Win64.Trojan.Agent.YCV6CD
Jiangmin	RiskTool.Miner.ajz
Avira	HEUR/AGEN.1123692
Antiy-AVL	GrayWare/Win32.CoinMiner
Gridinsoft	Ransom.Win64.Gen.sa
Cynet	Malicious (score: 99)
AhnLab-V3	Unwanted/Win32.CoinMiner.C3610076
Malwarebytes	Malware.AI.4201785306
Tencent	Win64.Trojan.Coinminer.Ehhr
SentinelOne	Static AI – Malicious PE
Fortinet	Adware/Miner
AVG	Win64:Trojan-gen
Panda	Trj/CI.A
MaxSecure	Trojan.Malware.121218.susgen

How to remove Malware.AI.4201785306?

Malware.AI.4201785306 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X