Malware.AI.4240401537 removal guide

The Malware.AI.4240401537 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.4240401537 virus can do?

SetUnhandledExceptionFilter detected (possible anti-debug)
At least one process apparently crashed during execution
Reads data out of its own binary image
Authenticode signature is invalid

How to determine Malware.AI.4240401537?


File Info:
name: 21470235CA6C58C4736D.mlw
path: /opt/CAPEv2/storage/binaries/7118f0e766f8f293dd85fec4725f7c87cffb461aa4a02dc049084b2e7fe66b87
crc32: C7E25230
md5: 21470235ca6c58c4736dac798de8a4a0
sha1: 933c3e229dd3801f6e337c9b24f15073263a3d13
sha256: 7118f0e766f8f293dd85fec4725f7c87cffb461aa4a02dc049084b2e7fe66b87
sha512: 2c5a27b6d011dcec482ede8e8c9468dca318fbf8dba92a6eb555a045f8095dfec2cc82e87c727db02892e2208d5bf8fada0646013c99b1e184454fc8a36ea02f
ssdeep: 6144:BCz0gzvD7cW5fX6EPElO38zwbgdObS56BfjmgtLi:BWrzvD15fqroyWpbSIl7Li
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T14AB5BF02F2D340BAD9A7113018B6AB359FB9BD0357319657A7A0FF9E5D316C2E81930E
sha3_384: f36305ea9774940f3c1fbb2f0f5eeb353379373c3df61fa83dcbd2f5ae5452da9bbca4952c38ec0673324f0244907f28
ep_bytes: 558bec6aff68f8f862006888f2610064
timestamp: 2006-02-02 00:15:34

Version Info:
Comments: 
CompanyName: Sysinternals - www.sysinternals.com
FileDescription: Rootkit detection utility
FileVersion: 1.70
InternalName: 
LegalCopyright: Copyright (C) 2005-2006 Bryce Cogswell and Mark Russinovich
LegalTrademarks: 
OriginalFilename: 
PrivateBuild: 
ProductName: Sysinternals Rootkitrevealer
ProductVersion: 1.70
SpecialBuild: 
Translation: 0x0409 0x04b0

Malware.AI.4240401537 also known as:

Bkav	W32.AIDetect.malware2
Elastic	malicious (high confidence)
CAT-QuickHeal	Trojan.Swisyn.OD5
Cylance	Unsafe
Zillya	Trojan.Swisyn.Win32.28380
K7AntiVirus	Riskware ( 0040eff71 )
K7GW	Riskware ( 0040eff71 )
Cybereason	malicious.29dd38
Cyren	W32/Swisyn.R.gen!Eldorado
Symantec	ML.Attribute.HighConfidence
ClamAV	Win.Malware.Swisyn-7008308-0
NANO-Antivirus	Trojan.Win32.TrjGen.cxmged
Avast	Win32:Malware-gen
FireEye	Generic.mg.21470235ca6c58c4
Sophos	ML/PE-A
SentinelOne	Static AI – Malicious PE
Antiy-AVL	Trojan/Generic.ASMalwS.2AA8672
Microsoft	Trojan:Win32/Wacatac.B!ml
GData	Win32.Trojan.PSE.14A82VQ
Cynet	Malicious (score: 100)
Malwarebytes	Malware.AI.4240401537
APEX	Malicious
Rising	Malware.Heuristic!ET#76% (RDMK:cmRtazp3jWdgcSvd+8r3yAQWiX3/)
Yandex	Trojan.Agent!gJtCfPZcXrY
Ikarus	Trojan.Win32.Swisyn
Fortinet	W32/Swisyn.R!tr
AVG	Win32:Malware-gen
CrowdStrike	win/malicious_confidence_100% (D)

How to remove Malware.AI.4240401537?

Malware.AI.4240401537 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X