Malware.AI.4225942526 removal

The Malware.AI.4225942526 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.4225942526 virus can do?

The binary contains an unknown PE section name indicative of packing
The executable is compressed using UPX
Authenticode signature is invalid

How to determine Malware.AI.4225942526?


File Info:
name: 1C52A6A3ECD5AE2CB7AD.mlw
path: /opt/CAPEv2/storage/binaries/c1e23daf89ab8a84986afa0e264ba201fdeb2a2a1a8055afc5c5b69fc852cff8
crc32: 2C139DAB
md5: 1c52a6a3ecd5ae2cb7add810d51f7f37
sha1: 8ca934d1cc077e8e11e30f38fda3096327dff189
sha256: c1e23daf89ab8a84986afa0e264ba201fdeb2a2a1a8055afc5c5b69fc852cff8
sha512: 8fa4aece158d86aa4c942d9d62caabde450de6bde6bccb6ee1a009d0ef03a0279128ea68bfb62c0ecfcad64b9a52c0711280cb83679adb2305a6797c0885b3bb
ssdeep: 12288:g8A1nJzeJ+Di0sT7mJTroUE014IXqY7RC0W2IU:iXzu+DiBT7eTro01ZXqY7RC0W2H
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1B455D615BFC185A3D4B114349CA3CB5477B2B8A4BF318B13659A333E7D253802E5A9EE
sha3_384: 267b9dd4d90d3cf7579dc026b1d1256dd184119d146f2b77eced1510bbe56ea7f04c44ee7d29d95284bdd3b4c68ad6a5
ep_bytes: 60be004029018dbe00d0d6ff57eb0b90
timestamp: 2019-01-03 18:54:33

Version Info:
Comments: Created with Setup Factory
CompanyName: Indigo Rose Corporation
FileDescription: Setup Application
FileVersion: 9.5.3.0
InternalName: suf_rt
LegalCopyright: Runtime Engine Copyright © 2019 Indigo Rose Corporation (www.indigorose.com)
LegalTrademarks: Setup Factory is a trademark of Indigo Rose Corporation
OriginalFilename: suf_rt.exe
ProductName: Setup Factory Runtime
ProductVersion: 9.5.3.0
Translation: 0x0409 0x04b0

Malware.AI.4225942526 also known as:

Bkav	W32.Common.EADF18BE
Lionic	Trojan.Win32.Generic.4!c
Elastic	malicious (moderate confidence)
MicroWorld-eScan	Trojan.GenericKD.68910781
McAfee	Artemis!1C52A6A3ECD5
Malwarebytes	Malware.AI.4225942526
Sangfor	Trojan.Win32.Save.a
Alibaba	Trojan:Application/Generic.eca3ac88
Cyren	W32/Backdoor.J.gen!Eldorado
Symantec	ML.Attribute.HighConfidence
APEX	Malicious
Cynet	Malicious (score: 100)
BitDefender	Trojan.GenericKD.68910781
Avast	Win32:Malware-gen
Emsisoft	Trojan.GenericKD.68910781 (B)
F-Secure	Trojan.TR/Crypt.ULPM.Gen
VIPRE	Trojan.GenericKD.68910781
McAfee-GW-Edition	BehavesLike.Win32.Generic.tt
FireEye	Trojan.GenericKD.68910781
Sophos	Generic Reputation PUA (PUA)
SentinelOne	Static AI – Suspicious PE
GData	Trojan.GenericKD.68910781
Avira	TR/Crypt.ULPM.Gen
MAX	malware (ai score=85)
Antiy-AVL	GrayWare/Win32.Wacapew
Xcitium	Packed.Win32.MUPX.Gen@24tbus
Arcabit	Trojan.Generic.D41B7EBD
Microsoft	Trojan:Win32/Wacatac.B!ml
Google	Detected
ALYac	Trojan.GenericKD.68910781
Cylance	unsafe
TrendMicro-HouseCall	TROJ_GEN.R002H09HT23
Yandex	Trojan.GenAsa!MkFvU9QZ2b0
Ikarus	Trojan.Crypt
MaxSecure	Trojan.Malware.218114276.susgen
Fortinet	W32/ULPM.16C0!tr
AVG	Win32:Malware-gen
DeepInstinct	MALICIOUS
CrowdStrike	win/malicious_confidence_70% (W)

How to remove Malware.AI.4225942526?

Malware.AI.4225942526 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X