Malware

How to remove “Malware.AI.4240311956”?

Malware Removal

The Malware.AI.4240311956 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.4240311956 virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Sample contains Overlay data
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX
  • Authenticode signature is invalid

How to determine Malware.AI.4240311956?



File Info:

name: EB3C73771C66C7E3789C.mlw
path: /opt/CAPEv2/storage/binaries/a0876e3f6aaa0d6523e51e145fe01b03d62dbe55904570a684e118b5b2c7cf54
crc32: 9C8E8CB4
md5: eb3c73771c66c7e3789c38babf688c5f
sha1: 65d3745e420233dcef0484d141e12f166462d7a0
sha256: a0876e3f6aaa0d6523e51e145fe01b03d62dbe55904570a684e118b5b2c7cf54
sha512: 2b879167d81cb0a848122b3d8574188ae0da14087e324d58f3154d726dbcb3789a4136974ced1203964574c4cc9c331135332d9d1f0b97f73379d11bd9e9e275
ssdeep: 3072:PKjntrgpq7EB8Plv02Ms8Zy4ZSptu8gJq3L1iEfVfb:PKjt1jc2MpR8Kq7YEZ
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1B6E30195FA73A412E280E83DC843C31221A47E3E95677E3225857E476E731F529326FA
sha3_384: 7c7d61123d7f3e78a13eb49c6e6899fed38da91b0f6bff2925d5592467b0252415cd34786396ba4ca23fe4c29759f4c3
ep_bytes: 60be002045008dbe00f0faff57eb0b90
timestamp: 2007-01-12 10:04:58


Version Info:

Translation: 0x0409 0x04b0
Comments: Microsoft Corporation
CompanyName: File Folder
ProductName:  
FileVersion: 1.00
ProductVersion: 1.00
InternalName: FILE FOLDER
OriginalFilename: FILE FOLDER.exe

Malware.AI.4240311956 also known as:

Elasticmalicious (moderate confidence)
CynetMalicious (score: 100)
FireEyeGeneric.mg.eb3c73771c66c7e3
McAfeeW32/MoonLight.worm.c
CylanceUnsafe
VIPREGeneric.Malware.LMWV3g.EACD9A32
SangforTrojan.Win32.Save.a
K7AntiVirusTrojan ( 0040f6141 )
K7GWTrojan ( 0040f6141 )
BaiduWin32.Worm.VB.a
CyrenW32/Noon.K.gen!Eldorado
SymantecW32.Lunalight@mm
tehtrisGeneric.Malware
ESET-NOD32Win32/NoonLight.Y
APEXMalicious
ClamAVWin.Worm.Moonlight-9775620-0
KasperskyEmail-Worm.Win32.VB.co
BitDefenderGeneric.Malware.LMWV3g.EACD9A32
NANO-AntivirusTrojan.Win32.VB.foifdq
MicroWorld-eScanGeneric.Malware.LMWV3g.EACD9A32
AvastWin32:Malware-gen
TencentMalware.Win32.Gencirc.10d0c284
Ad-AwareGeneric.Malware.LMWV3g.EACD9A32
EmsisoftGeneric.Malware.LMWV3g.EACD9A32 (B)
ComodoPacked.Win32.MUPX.Gen@24tbus
F-SecureTrojan.TR/Crypt.FKM.Gen
DrWebTrojan.DownLoader6.64360
ZillyaWorm.VB.Win32.63365
TrendMicroWORM_MOONLIGHT.F
McAfee-GW-EditionBehavesLike.Win32.Trojan.cc
SophosW32/Bobandy-I
IkarusTrojan.Win32.Patched
GDataGeneric.Malware.LMWV3g.EACD9A32
JiangminTrojan.NSIS.Inject.a
AviraTR/Crypt.FKM.Gen
Antiy-AVLTrojan/Generic.ASMalwIH.198
ArcabitGeneric.Malware.LMWV3g.EACD9A32
MicrosoftTrojan:Win32/Wacatac.B!ml
GoogleDetected
AhnLab-V3Worm/Win.VB.R526135
Acronissuspicious
VBA32TScope.Trojan.VB
ALYacGeneric.Malware.LMWV3g.EACD9A32
MAXmalware (ai score=82)
MalwarebytesMalware.AI.4240311956
TrendMicro-HouseCallWORM_MOONLIGHT.F
RisingWorm.VBInjectEx!1.99E6 (CLASSIC)
YandexI-Worm.VB.ZUF
SentinelOneStatic AI – Malicious PE
MaxSecureTrojan.Malware.711133.susgen
FortinetW32/Moonlight.B!worm
BitDefenderThetaAI:Packer.AC7DD6141D
AVGWin32:Malware-gen
Cybereasonmalicious.71c66c
PandaW32/Moonlight.P.worm

How to remove Malware.AI.4240311956?

Malware.AI.4240311956 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment