Malware

How to remove “Malware.AI.4211125898”?

Malware Removal

The Malware.AI.4211125898 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.4211125898 virus can do?

  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • Dynamic (imported) function loading detected
  • Enumerates running processes
  • Expresses interest in specific running processes
  • Repeatedly searches for a not-found process, may want to run with startbrowser=1 option
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid

How to determine Malware.AI.4211125898?



File Info:

name: B97672C022CD118B76A3.mlw
path: /opt/CAPEv2/storage/binaries/876c1aabd5db6b072c0e7a2f95625d1c502cbc4029cb0261cc81a75c546abd17
crc32: 2E74A020
md5: b97672c022cd118b76a36103d43d030b
sha1: 955a57e9f8728318b308119c40f1f20ef5125fc8
sha256: 876c1aabd5db6b072c0e7a2f95625d1c502cbc4029cb0261cc81a75c546abd17
sha512: d23ce00102d4ce515dfec6e3b6857a396b1cdc7206cfc63fdf9f315eea4cc7929e73556100bf4d176fbda9c6e75d6b13dd58b334bd85c2b627bd15fc6e3216fe
ssdeep: 12288:4foRzkSZWF/spV4hg7bcR2JrBwGR4IZBbjup2bR3:oo7bcR2JTR4IZBb9p
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T178D4E66038A8CF61CCA6E0B5C5ECE6F391DDDCA0E7314DD366943EE9B5301C06A3A659
sha3_384: b7b65dda56eb9676edd14792e85e1cf7237c1429d335ccb9d5a3cae2f05fcd53109c54870d7d606e19d13ca2ad34a8ea
ep_bytes: e9e8700000e917ae0100e9c1950000e9
timestamp: 2021-11-14 03:14:47


Version Info:

0: [No Data]

Malware.AI.4211125898 also known as:

BkavW32.AIDetect.malware2
LionicTrojan.Win32.Fugrafa.4!c
MicroWorld-eScanGen:Variant.Fugrafa.175119
FireEyeGen:Variant.Fugrafa.175119
ALYacGen:Variant.Fugrafa.175119
CylanceUnsafe
SymantecML.Attribute.HighConfidence
TrendMicro-HouseCallTROJ_GEN.R002H09KP21
BitDefenderGen:Variant.Fugrafa.175119
AvastWin32:Malware-gen
Ad-AwareGen:Variant.Fugrafa.175119
SophosMal/Generic-S
McAfee-GW-EditionBehavesLike.Win32.Emotet.hm
EmsisoftGen:Variant.Fugrafa.175119 (B)
GDataGen:Variant.Fugrafa.175119
MAXmalware (ai score=88)
GridinsoftRansom.Win32.Sabsik.sa
ArcabitTrojan.Fugrafa.D2AC0F
MicrosoftTrojan:Win32/Sabsik.FL.B!ml
CynetMalicious (score: 100)
McAfeeGenericRXAA-AA!B97672C022CD
MalwarebytesMalware.AI.4211125898
APEXMalicious
FortinetW32/PossibleThreat
AVGWin32:Malware-gen

How to remove Malware.AI.4211125898?

Malware.AI.4211125898 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment