What is “Malware.AI.4254480093”?

The Malware.AI.4254480093 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.4254480093 virus can do?

CAPE extracted potentially suspicious content
The binary contains an unknown PE section name indicative of packing
The binary likely contains encrypted or compressed data.
Authenticode signature is invalid

How to determine Malware.AI.4254480093?


File Info:
name: A8F8E4FBC95AB76638B3.mlw
path: /opt/CAPEv2/storage/binaries/cd6a81b5ec42106e5c8bfba27aa6192b454a863be207c79815b176d2f050f58e
crc32: EF06BE88
md5: a8f8e4fbc95ab76638b3f8b95543ff0c
sha1: 027a947b5de2b307b18f32b07a3a558237502228
sha256: cd6a81b5ec42106e5c8bfba27aa6192b454a863be207c79815b176d2f050f58e
sha512: 7e053f1161b5485e541bb669decd16c39af329f69a0d0168f8a3b48f40e9cd04cfac9d330ce8695e9faeea90853645d4a532e4491a0cd211685fff800dee9642
ssdeep: 98304:jZlrBsH+8rfxtRAakbHSjuaPlZl5uaPYZl:HlsHnYakbHSj/l5/g
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T18506D0527291D905E56D0F398E55CE9443B3BD02AE07E32F7780BE6A7E733C24EA2146
sha3_384: 65fc71426720b12194f03399b10e10bf159e11af03934d4cf19870045b68cf820181ce4ff3b2863e6cd1020bb0f67259
ep_bytes: ff250020400000000000000000000000
timestamp: 2022-09-26 22:12:52

Version Info:
Translation: 0x0000 0x04b0
CompanyName: Microsoft
FileDescription: Tiger Pass Vp
FileVersion: 1.0.0.0
InternalName: Tiger Pass Vp.exe
LegalCopyright: Copyright © Microsoft 2022
OriginalFilename: Tiger Pass Vp.exe
ProductName: Tiger Pass Vp
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

Malware.AI.4254480093 also known as:

Bkav	W32.AIDetectNet.01
Cynet	Malicious (score: 99)
Sangfor	Trojan.Win32.Save.a
Cybereason	malicious.bc95ab
Symantec	ML.Attribute.HighConfidence
Elastic	Windows.Trojan.Njrat
ESET-NOD32	a variant of MSIL/GameHack.RX potentially unsafe
APEX	Malicious
ClamAV	Win.Trojan.Generic-6417450-0
Kaspersky	HEUR:Trojan.Win32.Generic
MicroWorld-eScan	IL:Trojan.MSILMamut.6152
Rising	Backdoor.njRAT!1.D4D6 (CLASSIC)
DrWeb	BackDoor.BladabindiNET.9
VIPRE	IL:Trojan.MSILMamut.6152
FireEye	Generic.mg.a8f8e4fbc95ab766
Sophos	Generic ML PUA (PUA)
Avira	TR/Dropper.Gen7
Microsoft	Backdoor:MSIL/AsyncRAT!MTB
ZoneAlarm	not-a-virus:HEUR:RiskTool.MSIL.Gamech.gen
Google	Detected
ALYac	Generic.MSIL.Bladabindi.5B74F686
VBA32	Trojan.MSIL.Autorave.Heur
Malwarebytes	Malware.AI.4254480093
Tencent	Trojan.Win32.Bladabindi.16000334
SentinelOne	Static AI – Malicious PE
MaxSecure	Trojan.Malware.300983.susgen
BitDefenderTheta	Gen:NN.ZemsilF.34682.Tt0@aKr@Nan

How to remove Malware.AI.4254480093?

Malware.AI.4254480093 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X