Malware

Malware.AI.4274350566 removal

Malware Removal

The Malware.AI.4274350566 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.4274350566 virus can do?

  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • Behavioural detection: Executable code extraction – unpacking
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • Creates RWX memory
  • A process attempted to delay the analysis task.
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • Executable file is packed/obfuscated with MPRESS
  • Authenticode signature is invalid

Related domains:

www.ytapplications.com

How to determine Malware.AI.4274350566?



File Info:

name: 74D3B6AC65FEC4AEC863.mlw
path: /opt/CAPEv2/storage/binaries/bfc455f67a334213acec176543e38653115e1df798ccc681f159799f5d6dc5b5
crc32: F113799F
md5: 74d3b6ac65fec4aec863f3e38880a191
sha1: 43214a693bbc2dacfd8073d1c68b3726d919ea23
sha256: bfc455f67a334213acec176543e38653115e1df798ccc681f159799f5d6dc5b5
sha512: 9ef08212a8b7d53abf16e16a49a640cc2da04c046b053f87ffd62ba1182d7be269b63269fadfff8632e6d1cd81ceca00c4eef73f5a76ccf33269e01d52147671
ssdeep: 12288:8hIhUSz+eIqo/YFA/DVLVxnF5VXQJd7D7b7h7:Qk1dSnnF5FC
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T142D415025B898C01C96596F7C8624A771372FD356B269AB90F947CEBBF721ADD803073
sha3_384: 3fbb62aa362d9069bd51570c362f3983cb986b3704302c96941e314c7b013df8dfa65466486f3de9281e847a99e36ee6
ep_bytes: 60e80000000058055a0b00008b3003f0
timestamp: 2021-11-22 15:09:05


Version Info:

Comments: 
CompanyName: YT Applications
FileDescription: Media Player
FileVersion: 7, 9, 2, 0
InternalName: Media Player
LegalCopyright: (C) YT Applications. All rights reserved.
LegalTrademarks: 
OriginalFilename: MediaPlayer.EXE
PrivateBuild: 
ProductName: YT Downloader
ProductVersion: 7, 9, 2, 0
SpecialBuild: 
Translation: 0x0409 0x04b0

Malware.AI.4274350566 also known as:

BkavW32.AIDetect.malware1
LionicTrojan.Win32.Midie.4!c
MicroWorld-eScanGen:Variant.Midie.103548
FireEyeGeneric.mg.74d3b6ac65fec4ae
McAfeeGenericRXAA-FA!74D3B6AC65FE
CylanceUnsafe
SangforTrojan.Win32.Sabsik.FL
BitDefenderThetaGen:NN.ZexaF.34084.Lmuaa4gjivci
SymantecML.Attribute.HighConfidence
TrendMicro-HouseCallTROJ_GEN.R002H09KN21
Paloaltogeneric.ml
BitDefenderGen:Variant.Midie.103548
AvastWin32:Malware-gen
Ad-AwareGen:Variant.Midie.103548
EmsisoftGen:Variant.Midie.103548 (B)
McAfee-GW-EditionBehavesLike.Win32.Generic.jc
SophosMal/Generic-S
GDataGen:Variant.Midie.103548
WebrootW32.Malware.Gen
GridinsoftRansom.Win32.Sabsik.sa
ArcabitTrojan.Midie.D1947C
MicrosoftTrojan:Win32/Wacatac.B!ml
AhnLab-V3Trojan/Win.Generic.R447764
VBA32BScope.Trojan.Wacatac
ALYacGen:Variant.Midie.103548
MAXmalware (ai score=84)
MalwarebytesMalware.AI.4274350566
APEXMalicious
SentinelOneStatic AI – Malicious PE
FortinetW32/PossibleThreat
AVGWin32:Malware-gen
PandaTrj/CI.A

How to remove Malware.AI.4274350566?

Malware.AI.4274350566 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment