What is “Malware.AI.4245333989”?

The Malware.AI.4245333989 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.4245333989 virus can do?

SetUnhandledExceptionFilter detected (possible anti-debug)
Dynamic (imported) function loading detected
The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid

How to determine Malware.AI.4245333989?


File Info:
name: 1FB304FD4717ACEA67B9.mlw
path: /opt/CAPEv2/storage/binaries/0997e99419bf0667715498dc126df39cbd6016b03699dca225877a0665437130
crc32: BB4B46F6
md5: 1fb304fd4717acea67b903be18564896
sha1: 59bf812821f730ae7f8488c519204531a8256478
sha256: 0997e99419bf0667715498dc126df39cbd6016b03699dca225877a0665437130
sha512: 3ca249be5f0da5ec5c7ba38b1601d28bb673834dc3a6619ac87dee9bf7f022228f1b546626e6227ff755586d33d0dabc15dabd4b7792d57485e585e96f163b6f
ssdeep: 3072:hz4hdnWbPJAlafYc5I3/UYAl72Cn6UyKB0H2On6oKNSUmCaWn3scoltJcXq:N22JA+Ycco72u6UyrWOnXKNSYa+i
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T1A7744AC6FBC69D97D710077A8DEA835A233DE3C406835B1B2E3869385A277D1EDC6106
sha3_384: bb792251bb07e0b7884858d69493b97a60d520233add541291b40eb440344260523514c826d4e055d1d6993dfe102276
ep_bytes: c705501a410000000000e9a1fcffff90
timestamp: 2021-11-30 00:04:32

Version Info:
0: [No Data]

Malware.AI.4245333989 also known as:

McAfee	GenericRXOU-BV!1FB304FD4717
K7AntiVirus	Hacktool ( 0057d94f1 )
K7GW	Hacktool ( 0057d94f1 )
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win32/HackTool.Agent.NHF
TrendMicro-HouseCall	TROJ_GEN.R002C0PL321
Avast	Win32:Trojan-gen
Sophos	Generic PUA FJ (PUA)
F-Secure	Trojan.TR/Hacktool.wtwou
TrendMicro	TROJ_GEN.R002C0PL321
McAfee-GW-Edition	GenericRXOU-BV!1FB304FD4717
APEX	Malicious
Avira	TR/Hacktool.wtwou
Antiy-AVL	Trojan/Generic.ASMalwS.346ACFE
Microsoft	Trojan:Win32/Wacatac.B!ml
Cynet	Malicious (score: 99)
Malwarebytes	Malware.AI.4245333989
Fortinet	W32/Agent.NHF!tr
AVG	Win32:Trojan-gen

How to remove Malware.AI.4245333989?

Malware.AI.4245333989 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X