About “Malware.AI.4234570153” infection

The Malware.AI.4234570153 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.4234570153 virus can do?

SetUnhandledExceptionFilter detected (possible anti-debug)
Dynamic (imported) function loading detected
Authenticode signature is invalid

How to determine Malware.AI.4234570153?


File Info:
name: 01C5BA6FBFB905739521.mlw
path: /opt/CAPEv2/storage/binaries/e18ec7f8c0d32367dccdd8b358a6c260ab22f301804f04f1afaae0b41e95f9d8
crc32: 837122F6
md5: 01c5ba6fbfb9057395213d1df29d5bcf
sha1: 91295cef81adcc3b4de39cfdb6b859456c330e53
sha256: e18ec7f8c0d32367dccdd8b358a6c260ab22f301804f04f1afaae0b41e95f9d8
sha512: 24dbdf413f9e47d5522c3413d4bfe82e5ae219c67040f69a2ddaff6dcd8cb43e4cb14d94cf1a16d301f0ea73f76f8ce0e1c02fd59e5dc2eb10ae2c330f1fe4ec
ssdeep: 6144:XukfpFsiIJvAO2QRpCwhh9R66kWyoLIUZ:XuliIJv9Lb66k3op
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1CE64AE5F36C2FEBEC4E112359150D71501B4EC280373A9A33FD8AA9EF9A6440CB76B65
sha3_384: ac123e3ccc80e02c2c6d98e58ad566dd6c26a8f8c84560c0d57d8cc3c67c81460fd3ca31083525bd23e1491121b69ff0
ep_bytes: e8ce1d0000e9000000006a146898a341
timestamp: 2018-09-09 15:35:06

Version Info:
0: [No Data]

Malware.AI.4234570153 also known as:

Bkav	W32.AIDetect.malware2
Lionic	Trojan.Win32.Generic.4!c
Elastic	malicious (high confidence)
FireEye	Trojan.GenericKD.45815211
CAT-QuickHeal	Trojan.IGENERIC
McAfee	Artemis!01C5BA6FBFB9
Malwarebytes	Malware.AI.4234570153
Sangfor	Trojan.Win32.GenericKD.4
K7AntiVirus	Riskware ( 00584baa1 )
Alibaba	Trojan:Win32/Swrort.9fb84ad6
K7GW	Riskware ( 00584baa1 )
Cybereason	malicious.fbfb90
Cyren	W32/Swrort.O.gen!Eldorado
Symantec	Trojan Horse
APEX	Malicious
Cynet	Malicious (score: 100)
BitDefender	Trojan.GenericKD.45815211
MicroWorld-eScan	Trojan.GenericKD.45815211
Avast	FileRepMalware [Misc]
Ad-Aware	Trojan.GenericKD.45815211
Sophos	Mal/Generic-R
McAfee-GW-Edition	BehavesLike.Win32.Emotet.fh
Emsisoft	Trojan.GenericKD.45815211 (B)
GData	Trojan.GenericKD.45815211
Webroot	W32.Trojan.GenKD
Arcabit	Trojan.Generic.D2BB15AB
Microsoft	Trojan:Win32/Occamy.CE1
AhnLab-V3	Malware/Win32.Generic.C2748091
VBA32	Trojan.Occamy
ALYac	Trojan.GenericKD.45815211
Cylance	Unsafe
TrendMicro-HouseCall	TROJ_GEN.R002H0CDS22
Rising	Trojan.Generic@AI.90 (RDMK:VRspdQa3sA8He14uCqVtYQ)
SentinelOne	Static AI – Suspicious PE
MaxSecure	Trojan.Malware.73905816.susgen
Fortinet	W32/PossibleThreat
BitDefenderTheta	Gen:NN.ZexaF.34742.tuW@aev19eEi
AVG	FileRepMalware [Misc]
Panda	Trj/GdSda.A
CrowdStrike	win/malicious_confidence_100% (W)

How to remove Malware.AI.4234570153?

Malware.AI.4234570153 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X