Should I remove “Malware.AI.4204127463”?

The Malware.AI.4204127463 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.4204127463 virus can do?

Dynamic (imported) function loading detected
Authenticode signature is invalid

How to determine Malware.AI.4204127463?


File Info:
name: 3B99D13539AE0C6060AF.mlw
path: /opt/CAPEv2/storage/binaries/38c73655b7916230b8e00b89a636fbf9d0cb3a236bba87bf35f409f6626122f9
crc32: FBB0B4E1
md5: 3b99d13539ae0c6060af9ec40bbc9ea5
sha1: 39b83d435bb6b224a214f3f6f69d8f607a8820f7
sha256: 38c73655b7916230b8e00b89a636fbf9d0cb3a236bba87bf35f409f6626122f9
sha512: a136dafd49a3459eb610b3345bdcd0c54caa25daf39b5c252975eb9d7b20049688f2a16839ca1fcc2558405afdf15e24689511426f6044a70aeff908db5ca7f2
ssdeep: 3072:NclN6z5tp+20ttLDwN5lCQVfJ4CJTz8z7pCCNNe4t26B0:UN6z5tp+20vLJUTgz7pCCNNG6
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1AC04D612B75AC12FC8354BF945DB87B11332D5C5B185CF83C64E6BA5AF422884ECA2B7
sha3_384: dab318d2bca501c43951b476f93565c753399b554d1271f9bcb090a95e1add75b245b769cb9bb2d11dd4b9726bef4042
ep_bytes: ff25a4cc4200000000000000000078cc
timestamp: 2016-11-07 07:01:37

Version Info:
Translation: 0x0000 0x04b0
Comments: 
CompanyName: 
FileDescription: Microsoft System Diagnostic
FileVersion: 1.0.0.0
InternalName: Microsoft System Diagnostic.exe
LegalCopyright: Copyright ©  2016
LegalTrademarks: 
OriginalFilename: Microsoft System Diagnostic.exe
ProductName: Microsoft System Diagnostic
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

Malware.AI.4204127463 also known as:

Lionic	Riskware.Win32.Generic.1!c
MicroWorld-eScan	Gen:Variant.Ursu.271524
FireEye	Generic.mg.3b99d13539ae0c60
McAfee	RDN/Generic Downloader.x
Cylance	Unsafe
Sangfor	PUP.Win32.Generic.ky
K7AntiVirus	Trojan ( 005070731 )
Alibaba	Trojan:Win32/Generic.2a8b8aca
K7GW	Trojan ( 005070731 )
CrowdStrike	win/malicious_confidence_100% (W)
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	MSIL/TrojanClicker.Agent.NPC
TrendMicro-HouseCall	TROJ_GEN.R002C0DAR22
Paloalto	generic.ml
Kaspersky	not-a-virus:HEUR:Downloader.Win32.Generic
BitDefender	Gen:Variant.Ursu.271524
Avast	Win32:Rootkit-gen [Rtk]
Tencent	Win32.Trojan-downloader.Generic.Lmld
Sophos	Mal/Generic-S
TrendMicro	TROJ_GEN.R002C0DAR22
McAfee-GW-Edition	RDN/Generic Downloader.x
Emsisoft	Gen:Variant.Ursu.271524 (B)
Ikarus	Trojan.MSIL.TrojanClicker
Jiangmin	Downloader.Snojan.jr
Avira	TR/Clicker.sjuuo
Antiy-AVL	Trojan/Generic.ASMalwS.206C385
Microsoft	Trojan:Win32/Skeeyah.A!rfn
ZoneAlarm	not-a-virus:HEUR:Downloader.Win32.Generic
GData	Gen:Variant.Ursu.271524
Cynet	Malicious (score: 99)
VBA32	Downloader.Snojan
ALYac	Gen:Variant.Ursu.271524
MAX	malware (ai score=86)
Malwarebytes	Malware.AI.4204127463
APEX	Malicious
Yandex	PUA.Downloader!KOjMZH3gkYM
SentinelOne	Static AI – Malicious PE
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	MSIL/TrojanClicker_Agent.NPC!tr
AVG	Win32:Rootkit-gen [Rtk]
Cybereason	malicious.539ae0
Panda	Trj/CI.A

How to remove Malware.AI.4204127463?

Malware.AI.4204127463 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X