What is “Malware.AI.4273376297”?

The Malware.AI.4273376297 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.4273376297 virus can do?

The binary likely contains encrypted or compressed data.
Authenticode signature is invalid
Anomalous binary characteristics

How to determine Malware.AI.4273376297?


File Info:
name: 96C8A7BC2854B3B27E1D.mlw
path: /opt/CAPEv2/storage/binaries/40e718ef9c70d782992a5a4aa4735bcfe49d3725fb9a950d0cc60705b8feb918
crc32: 87258AEB
md5: 96c8a7bc2854b3b27e1d384b01696d18
sha1: 38d957fe9a86193a34adf0231c2e43ab8fd136ea
sha256: 40e718ef9c70d782992a5a4aa4735bcfe49d3725fb9a950d0cc60705b8feb918
sha512: e00f763144d9daac07fff04ef22bb15140051304fb057ff33d1f9a937432988b24de164b97f2fe6ce61ec8d0a44baae3e1eba90823951e78f809a5247902f93e
ssdeep: 12288:vX1w6dPYHVa7crhjWID2hJ6SXovvbPFbejTAJX2QBuLXGZ6eoBz6a:/1mHrrhjOozFbTX2QFyz6
type: PE32+ executable (console) x86-64, for MS Windows
tlsh: T138D47D5A431804C6F0C26D36CAB24BBCE3947535A8891D869E977F233C26D378F95F4A
sha3_384: 75e027f160da2de69c212b2ca597379c0e9e4b52749bd647fd75eb6d1f9d287e3c3f169278f1bd8dd7cfd54b4dff56b3
ep_bytes: 90554889e55648ffce57415441554156
timestamp: 2008-11-08 16:22:40

Version Info:
CompanyName: Microsoft Corporation
FileDescription: SNMP Trap
FileVersion: 10.0.17134.1 (WinBuild.160101.0800)
InternalName: snmptrap.exe
LegalCopyright: © Microsoft Corporation. All rights reserved.
OriginalFilename: snmptrap.exe
ProductName: Microsoft® Windows® Operating System
ProductVersion: 10.0.17134.1
Translation: 0x0409 0x04b0

Malware.AI.4273376297 also known as:

MicroWorld-eScan	Win64.Expiro.Gen.3
FireEye	Generic.mg.96c8a7bc2854b3b2
McAfee	W64/Expiro.a
Cylance	Unsafe
Zillya	Virus.Expiro.Win64.34
K7AntiVirus	Virus ( 0040f8071 )
K7GW	Virus ( 0040f8071 )
Cybereason	malicious.c2854b
Cyren	W64/Expiro.D!gen
Symantec	W64.Xpiro.F
ESET-NOD32	Win64/Expiro.AG
Baidu	Win64.Virus.Expiro.r
TrendMicro-HouseCall	PE64_EXPIRO.AR
ClamAV	Win.Virus.Expiro-6854488-0
Kaspersky	Virus.Win64.Expiro.g
BitDefender	Win64.Expiro.Gen.3
NANO-Antivirus	Virus.Win64.Expiro.dtfhve
Avast	Win32:Expiro-DD
Tencent	Virus.Win64.Expiro.ad
Ad-Aware	Win64.Expiro.Gen.3
Sophos	ML/PE-A + W64/Expiro-S
DrWeb	Win64.Expiro.108
VIPRE	Virus.Win64.Expiro.gen.a (v)
TrendMicro	PE64_EXPIRO.AR
McAfee-GW-Edition	BehavesLike.Win64.Expiro.hc
Emsisoft	Win64.Expiro.Gen.3 (B)
Ikarus	Virus.Win32.Expiro
GData	Win64.Expiro.Gen.3
Avira	W64/Expiro.AF
MAX	malware (ai score=84)
Antiy-AVL	Trojan/Generic.ASVirus.311
APEX	Malicious
Microsoft	Trojan:Win32/Sabsik.FL.B!ml
Cynet	Malicious (score: 100)
AhnLab-V3	Win64/Expiro2.Gen
Acronis	suspicious
ALYac	Win64.Expiro.Gen.3
TACHYON	Virus/W64.Expiro.C
Malwarebytes	Malware.AI.4273376297
Rising	Virus.Expiro!1.A140 (CLASSIC)
SentinelOne	Static AI – Malicious PE
Fortinet	W64/Expiro.Q
AVG	Win32:Expiro-DD
Panda	W32/Expiro.gen
CrowdStrike	win/malicious_confidence_100% (D)

How to remove Malware.AI.4273376297?

Malware.AI.4273376297 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X