Malware.AI.4228826776 (file analysis)

The Malware.AI.4228826776 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.4228826776 virus can do?

Dynamic (imported) function loading detected
Authenticode signature is invalid

How to determine Malware.AI.4228826776?


File Info:
name: 9D3C4F55D1613500A38B.mlw
path: /opt/CAPEv2/storage/binaries/6eef2b63b24b8e2995c267b937b0223dd3444d3fb7b5645a9780e101087e262d
crc32: 5DF9778B
md5: 9d3c4f55d1613500a38b0083ee3f1356
sha1: 66aa3279c5ce4e084174fc9ee080526895415fc9
sha256: 6eef2b63b24b8e2995c267b937b0223dd3444d3fb7b5645a9780e101087e262d
sha512: 289e8b83b7d063575be71fb3b6847a6f8adfb6096aa2a15cf51c8e2e5ada57e1467ee30a6274b12cf0af4d957d9b3624c2d93e6db44b6666b2431fa0977b1444
ssdeep: 3072:X5yWNCS7iTjWJ8qwSLaHMiiX7NOcADpekEFFUTahKiP/:7NDkZnSOsZZOLDpeXF3U8
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1BA44AE957FE5CE1BC1AA0A7D9C728354A630CC424B13C743FAA4B36EAC723D17A416D6
sha3_384: 888816990003ba59b5d16aef999c8d693dff2d58d9dbba826a65c80483f3a5023df21487a2d2ca5a85c6c2257453a9c2
ep_bytes: ff250020400000000000000000000000
timestamp: 2021-12-03 10:40:57

Version Info:
Translation: 0x0000 0x04b0
FileDescription:  
FileVersion: 2
InternalName: English.exe
LegalCopyright:  
OriginalFilename: English.exe
ProductName: sds
ProductVersion: 2
Assembly Version: 2.0.0.0

Malware.AI.4228826776 also known as:

Lionic	Trojan.Win32.Encoder.j!c
MicroWorld-eScan	Trojan.GenericKD.38176257
FireEye	Generic.mg.9d3c4f55d1613500
McAfee	RDN/Ransom
Malwarebytes	Malware.AI.4228826776
K7AntiVirus	Riskware ( 0040eff71 )
Alibaba	Trojan:Win32/Encoder.0a9b2b50
K7GW	Riskware ( 0040eff71 )
Arcabit	Trojan.Generic.D2468601
BitDefenderTheta	Gen:NN.ZemsilF.34084.pm0@ayhXdxj
Cyren	W32/MSIL_Kryptik.BWA.gen!Eldorado
Symantec	ML.Attribute.HighConfidence
APEX	Malicious
Kaspersky	Trojan-Ransom.Win32.Encoder.omy
BitDefender	Trojan.GenericKD.38176257
Avast	Win32:Malware-gen
Tencent	Win32.Trojan.Encoder.Hupo
Ad-Aware	Trojan.GenericKD.38176257
Emsisoft	Trojan.GenericKD.38176257 (B)
TrendMicro	Ransom_Encoder.R002C0WL621
McAfee-GW-Edition	BehavesLike.Win32.Generic.dm
Avira	TR/Encoder.mrucq
Gridinsoft	Ransom.Win32.Wacatac.sa
Microsoft	Trojan:Win32/Sabsik.FL.B!ml
GData	Trojan.GenericKD.38176257
Cynet	Malicious (score: 100)
VBA32	TScope.Trojan.MSIL
ALYac	Trojan.GenericKD.38176257
MAX	malware (ai score=86)
TrendMicro-HouseCall	Ransom_Encoder.R002C0WL621
SentinelOne	Static AI – Malicious PE
Fortinet	PossibleThreat
AVG	Win32:Malware-gen
Panda	Trj/GdSda.A

How to remove Malware.AI.4228826776?

Malware.AI.4228826776 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X