Should I remove “Malware.AI.4275452504”?

The Malware.AI.4275452504 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.4275452504 virus can do?

Authenticode signature is invalid
CAPE detected the MarkiRAT malware family
Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine Malware.AI.4275452504?


File Info:
name: 114A4AD3479F9B7AD5CE.mlw
path: /opt/CAPEv2/storage/binaries/23c0065cf0477b71c9b6f961c6f816a722088118f87d847bedf2296e6e4cf34b
crc32: F14D37AE
md5: 114a4ad3479f9b7ad5ce6330ba85ba5a
sha1: 6ceef898e9b237d625f0d9716b0d5d2464a68e59
sha256: 23c0065cf0477b71c9b6f961c6f816a722088118f87d847bedf2296e6e4cf34b
sha512: f88863c04799c8c49a0170d8a55c88dcb747b633d322d10141e7f2e7d88f4fc74cf7746c864b1045a537bd9c119361d4e9c249e60f95f43640e6646ae06c7484
ssdeep: 49152:QNkvEp5wtXK/6zV1RrEdQLO1QDkg9lppp3XtL:SkvEpCXKCzPRYde0QIIbpp3Xt
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T18706BF303D04CCF2D63B42338AC9F6BDD2AF65714B6682CB1198B64B1A23E569D17937
sha3_384: b4b2bc7bd8e4f942b545643211a7682e0c08842449ca942a7a9cf450d014760cacfda1f2511b522434ed8edbd7606d18
ep_bytes: 8bec609ce90f240500ff3b0dc4cf7600
timestamp: 2018-11-25 10:31:27

Version Info:
CompanyName: Microsoft
FileDescription: Host Service
FileVersion: 1.0.0.1
InternalName: Service.exe
LegalCopyright: Microsoft.  All rights reserved.
OriginalFilename: mfcmklg.exe
ProductName: Host Service
ProductVersion: 1.0.0.1
Translation: 0x0409 0x04b0

Malware.AI.4275452504 also known as:

Bkav	W32.AIDetectMalware
Lionic	Trojan.Win32.KeyLogger.4!c
MicroWorld-eScan	Trojan.Agent.FMYA
FireEye	Generic.mg.114a4ad3479f9b7a
ALYac	Trojan.Agent.FMYA
Cylance	unsafe
K7AntiVirus	Trojan ( 0057efb11 )
BitDefender	Trojan.Agent.FMYA
K7GW	Trojan ( 0057efb11 )
CrowdStrike	win/malicious_confidence_100% (W)
BitDefenderTheta	Gen:NN.ZexaF.36350.Rx0@a0xAeppi
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (high confidence)
APEX	Malicious
Alibaba	Trojan:Win32/MalwareX.f24d255e
NANO-Antivirus	Virus.Win32.Gen-Crypt.ccnc
TrendMicro	TROJ_GEN.R002C0PGI23
SentinelOne	Static AI – Suspicious PE
Avira	TR/Agent.bzkyo
Antiy-AVL	Trojan/Win32.Agentb
Arcabit	Trojan.Agent.FMYA
Cynet	Malicious (score: 100)
AhnLab-V3	Trojan/Win.Agent.R535603
VBA32	Heur.Trojan.Hlux
MAX	malware (ai score=82)
Malwarebytes	Malware.AI.4275452504
TrendMicro-HouseCall	TROJ_GEN.R002C0PGI23
Tencent	Malware.Win32.Gencirc.117d8ed0
Ikarus	Trojan.Win32.Agent
MaxSecure	Trojan.Malware.11443257.susgen
Fortinet	W32/GenKryptik.GCTV!tr
Cybereason	malicious.8e9b23
DeepInstinct	MALICIOUS

How to remove Malware.AI.4275452504?

Malware.AI.4275452504 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X