Malware

Malware.AI.4279115100 (file analysis)

Malware Removal

The Malware.AI.4279115100 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.4279115100 virus can do?

  • Reads data out of its own binary image
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX
  • Authenticode signature is invalid
  • Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine Malware.AI.4279115100?



File Info:

name: 0CF7825C5141AC46795E.mlw
path: /opt/CAPEv2/storage/binaries/80f4268a4b71264214e1db8bfa3618b139d14668bacb57ba3c0f54fde34cb6c4
crc32: 83079EBD
md5: 0cf7825c5141ac46795e146ecdd39f83
sha1: 3042abaa509da49845325659e3a44fdf394c8eeb
sha256: 80f4268a4b71264214e1db8bfa3618b139d14668bacb57ba3c0f54fde34cb6c4
sha512: 8d6e9d117023a7fe57fe34dccb6f1cb132fc177ef8e8f92a31683fb1831faea8adb5501931c662d10f9bd6d75e1cee4e67bc7e19023eeaa8142f352acde9cdad
ssdeep: 12288:XwfRI/Pq+xMGbRjlisYny9U3W7pNi4lhoYxc3ig55V/JGO5r6Gy/Kl:XwKPq+W8KzMboYxKig5nhr6Gy/Kl
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T12AD4237185694835D76B0CF2122189998229F9121D7FB345FCE6E5AFEF7780283B334A
sha3_384: 1b91f832c3a8867ddd0c2ca81e369a42a95c52e8746d518ff16dd968c4ffce2a57444afa5cfae391d858d6e043ce141f
ep_bytes: 60be007048008dbe00a0f7ff57eb0b90
timestamp: 2014-01-03 20:50:52


Version Info:

FileVersion: 3.8
FileDescription: Need For Speed World Trainer
LegalCopyright: DarkTeam© | 2012-2013
ProductVersion: 3.8
ProductName: Speedius 3.8
Translation: 0x0809 0x04b0

Malware.AI.4279115100 also known as:

BkavW32.AIDetectMalware
LionicTrojan.Win32.Gamehack.4!c
MicroWorld-eScanTrojan.Generic.34174570
FireEyeGeneric.mg.0cf7825c5141ac46
SkyhighBehavesLike.Win32.Injector.jc
ALYacTrojan.Generic.34174570
MalwarebytesMalware.AI.4279115100
SangforTrojan.Win32.Agent.Vni8
BitDefenderTrojan.Generic.34174570
K7GWUnwanted-Program ( 0051418d1 )
K7AntiVirusUnwanted-Program ( 0051418d1 )
ESET-NOD32Win32/GameHack.RD potentially unsafe
APEXMalicious
RisingTrojan.Generic@AI.96 (RDML:nSKrQfAImgYLeaR1/e0f+w)
EmsisoftTrojan.Generic.34174570 (B)
DrWebTrojan.AutoIt.128
VIPRETrojan.Generic.34174570
Trapminemalicious.moderate.ml.score
MAXmalware (ai score=84)
GDataTrojan.Generic.34174570
Antiy-AVLRiskWare/Win32.Gamehack
ArcabitTrojan.Generic.D209766A
CynetMalicious (score: 100)
McAfeeArtemis!0CF7825C5141
VBA32Trojan.Autoit.Wirus
Cylanceunsafe
TrendMicro-HouseCallTROJ_GEN.R002H09J323
SentinelOneStatic AI – Malicious PE
MaxSecureTrojan.Malware.3411146.susgen
Cybereasonmalicious.a509da
DeepInstinctMALICIOUS

How to remove Malware.AI.4279115100?

Malware.AI.4279115100 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment