Malware.AI.4254697908 malicious file

The Malware.AI.4254697908 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.4254697908 virus can do?

Sample contains Overlay data
The binary contains an unknown PE section name indicative of packing
The binary likely contains encrypted or compressed data.
The executable is compressed using UPX
Authenticode signature is invalid

How to determine Malware.AI.4254697908?


File Info:
name: 96EC7088896EF0E0B722.mlw
path: /opt/CAPEv2/storage/binaries/20a507a4f205e243467525c59f07d2e5122c4a92e95149a828abb81490e7950f
crc32: 6A37E232
md5: 96ec7088896ef0e0b722157cc9a9aa1d
sha1: 2fe8ca50f3d3fc33b62ad5f595dbf8b82fd9f20c
sha256: 20a507a4f205e243467525c59f07d2e5122c4a92e95149a828abb81490e7950f
sha512: 0b55f3bf85913445ce7a0828ad3b9a64fdccc284a4ab6d198c99ad1db06c3329c7cb0294e41cf23b9e69158cd5b6495a30e15fa0a562378479a2cd35b32d7da1
ssdeep: 1536:J2vI1y5uuao2Je8MmCvIS+T+ncWVcTkKE:02y5QXe8tCAS+T+n1Vc4h
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T17143F157CB73DDAFCD3725780B83661BCB0DC8125B7C0B4AFA5019559F3A396492E828
sha3_384: d6fe26cdbf8d3cde63088e7085a4b0412ca1ed8599d22fa96f0a4c81150e78f1b28ce2d8490dfca6d9dadda3f6c5008d
ep_bytes: 60be00b089778dbe0060feff5783cdff
timestamp: 1992-06-19 22:22:17

Version Info:
0: [No Data]

Malware.AI.4254697908 also known as:

Bkav	W32.AIDetectMalware
AVG	Win32:Downloader-AHH [Trj]
Elastic	malicious (high confidence)
MicroWorld-eScan	Gen:Trojan.Heur.GM.0540040802
Skyhigh	BehavesLike.Win32.Mydoom.qc
McAfee	generic!bg.d
Malwarebytes	Malware.AI.4254697908
VIPRE	Gen:Trojan.Heur.GM.0540040802
Sangfor	Suspicious.Win32.Save.a
Alibaba	Trojan:Win32/BackdoorX.1fa948a2
Paloalto	generic.ml
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Generik.DNLEPH
Cynet	Malicious (score: 100)
APEX	Malicious
Avast	Win32:Downloader-AHH [Trj]
ClamAV	Win.Trojan.Downloader-1566
Kaspersky	UDS:DangerousObject.Multi.Generic
BitDefender	Gen:Trojan.Heur.GM.0540040802
NANO-Antivirus	Trojan.Win32.CFI.wixaf
Tencent	Malware.Win32.Gencirc.140545b9
Emsisoft	Gen:Trojan.Heur.GM.0540040802 (B)
F-Secure	Trojan.TR/ATRAPS.Gen
Zillya	Trojan.Kryptik.Win32.65569
TrendMicro	TROJ_GEN.R002C0DAV24
FireEye	Generic.mg.96ec7088896ef0e0
Sophos	Mal/Generic-S
Ikarus	Virus.Win32.Downloader.AHH
Jiangmin	Trojan/PSW.Almat.afy
Varist	W32/Backdoor.OATJ-3741
Avira	TR/ATRAPS.Gen
Kingsoft	Win32.Troj.Unknown.a
Microsoft	Trojan:Win32/Agent
Xcitium	Malware@#2qciyjmo6b5rx
Arcabit	Trojan.Heur.GM.D20305E62
ZoneAlarm	UDS:DangerousObject.Multi.Generic
GData	Gen:Trojan.Heur.GM.0540040802
Google	Detected
ALYac	Gen:Trojan.Heur.GM.0540040802
Cylance	unsafe
Panda	Trj/Genetic.gen
TrendMicro-HouseCall	TROJ_GEN.R002C0DAV24
Rising	Trojan.Win32.Xema.var (CLASSIC)
Yandex	Trojan.GenAsa!ujN3zDsc1fI
MAX	malware (ai score=99)
MaxSecure	Trojan.Malware.1728101.susgen
Fortinet	PossibleThreat
BitDefenderTheta	AI:Packer.3690FF711D
DeepInstinct	MALICIOUS
alibabacloud	Trojan:Win/ATRAPS.Gen

How to remove Malware.AI.4254697908?

Malware.AI.4254697908 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X