About “Malware.AI.4216221679” infection

The Malware.AI.4216221679 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.4216221679 virus can do?

The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid

How to determine Malware.AI.4216221679?


File Info:
name: CA5117CDB92CC2DE82D3.mlw
path: /opt/CAPEv2/storage/binaries/5176c93d2f3a72d3c6d12aceb7c877a6c1c1d90e85d162a9772a8ab0a6ad6559
crc32: 32D7D3E2
md5: ca5117cdb92cc2de82d384bc37ba8f6d
sha1: fc84a03dac395fe4bfccfe7ca7ee5ca654b6834f
sha256: 5176c93d2f3a72d3c6d12aceb7c877a6c1c1d90e85d162a9772a8ab0a6ad6559
sha512: 52404d43208458a9f684874535c4dc84559edf2abcd4d224d911594561f4f67f81688eb4d726f5bd69227089035f3fbb753a1eeae0b136240372f5769f5c661d
ssdeep: 384:YOHpDrh+s/AmnXW8j5KkIgUOTAODJHN4wPhciG6B4D23YZQ8Zb:YkpPUSAmLj5KkIgUWtdtJhZG6B4Drr
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T1CA03F812B190C037F8EA01FFDAFE4CF5592CDD341B6A41E362D741A927611DB603AB9A
sha3_384: 81289e1a84ef892b9b87ca624abca7600eae201b43a24b4be5a7a2fcb465bffb69f01ee89d932827f69bbabb0c6111fa
ep_bytes: e978130000e988420000e9fe1b0000e9
timestamp: 2022-08-04 09:43:49

Version Info:
0: [No Data]

Malware.AI.4216221679 also known as:

CyrenCloud	W32/Fugrafa.Z.gen!Eldorado
Bkav	W32.AIDetectMalware
Lionic	Trojan.Win32.Generic.4!c
FireEye	Generic.mg.ca5117cdb92cc2de
Skyhigh	BehavesLike.Win32.Generic.pt
Malwarebytes	Malware.AI.4216221679
Elastic	malicious (high confidence)
Cynet	Malicious (score: 100)
SentinelOne	Static AI – Malicious PE
Varist	W32/Fugrafa.Z.gen!Eldorado
Antiy-AVL	Trojan/Win32.PossibleThreat
ViRobot	Trojan.Win32.Z.Wacatac.40960.XK
GData	Win32.Trojan.PSE.13CL3EN
Google	Detected
AhnLab-V3	Trojan/Win.Generic.C5249529
McAfee	RDN/Generic.dx
VBA32	BScope.Trojan.Wacatac
TrendMicro-HouseCall	TROJ_GEN.R002H06K623
Rising	Trojan.Generic@AI.100 (RDML:Hc6F+sN6c2sXlKj0ClOuLQ)
Ikarus	Trojan.Win32.Agent
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	W32/PossibleThreat
DeepInstinct	MALICIOUS

How to remove Malware.AI.4216221679?

Malware.AI.4216221679 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X