Malware.AI.4280917069 malicious file

The Malware.AI.4280917069 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.4280917069 virus can do?

Dynamic (imported) function loading detected
The binary likely contains encrypted or compressed data.
Authenticode signature is invalid
Binary compilation timestomping detected

How to determine Malware.AI.4280917069?


File Info:
name: 24F3F07E525B9EEFE986.mlw
path: /opt/CAPEv2/storage/binaries/e1a2b6178fb816a30a32f39004f5fd0681b3e90cfd28e027901e31d72a487513
crc32: 671C3503
md5: 24f3f07e525b9eefe986f35491c0fd82
sha1: 1a81354dabcb0920025821e2c32ccf27540e2d22
sha256: e1a2b6178fb816a30a32f39004f5fd0681b3e90cfd28e027901e31d72a487513
sha512: 3e6367b36490439a182c620835201b225e5aeefd44a61c5f3588052a670b19bbec1b48e17bc8690d2d1d1efc889618a1be56a1fd252f34975fc5ca39b1027f1c
ssdeep: 1536:UHAnBKzFKpHdh9uoI3trBdJd8avurBdJd8av8GmVcl:UHAnIFKxm9QZQ/G8Y
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T17C338E117BE84262E1BF87B56DF395C68A329787F412CEA97CCD514D2F227808903B76
sha3_384: 6a173255fc5972caef9275ceb680d58748c81d3f55b8e4de82a3d6c05e6e2b4bc66d34222785ba023706b9fee784b4d8
ep_bytes: ff25002040000102030405060708b184
timestamp: 2063-12-07 14:42:00

Version Info:
Translation: 0x0000 0x04b0
Comments: 
CompanyName: 
FileDescription: Microsoft Windows Search
FileVersion: 1.0.0.0
InternalName: Microsoft Windows Search.exe
LegalCopyright: Copyright ©  2020
LegalTrademarks: 
OriginalFilename: Microsoft Windows Search.exe
ProductName: 
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

Malware.AI.4280917069 also known as:

MicroWorld-eScan	IL:Trojan.MSILZilla.11477
FireEye	IL:Trojan.MSILZilla.11477
McAfee	RDN/Ransom
Cylance	Unsafe
Sangfor	Ransom.MSIL.Gen.gen
K7AntiVirus	Trojan ( 0058de721 )
K7GW	Trojan ( 0058de721 )
BitDefenderTheta	Gen:NN.ZemsilF.34182.dm0@a8h2jDk
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	Win32/Filecoder.OJY
TrendMicro-HouseCall	TROJ_GEN.R002H0CB322
Paloalto	generic.ml
Kaspersky	HEUR:Trojan-Ransom.MSIL.Gen.gen
BitDefender	IL:Trojan.MSILZilla.11477
Avast	Win32:Trojan-gen
Tencent	Win32.Trojan.Filecoder.Htcl
Emsisoft	IL:Trojan.MSILZilla.11477 (B)
McAfee-GW-Edition	RDN/Ransom
SentinelOne	Static AI – Malicious PE
Sophos	Mal/Generic-S
APEX	Malicious
Avira	HEUR/AGEN.1121252
Antiy-AVL	Trojan/Generic.ASMalwS.351FE78
Gridinsoft	Ransom.Win32.Gen.sa
GData	IL:Trojan.MSILZilla.11477
Cynet	Malicious (score: 100)
AhnLab-V3	Trojan/Win.Generic.C4952528
MAX	malware (ai score=82)
Malwarebytes	Malware.AI.4280917069
Yandex	Trojan.Filecoder!1quyrRPdoIY
Ikarus	Trojan-Ransom.FileCrypter
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	MSIL/Filecoder.OJL!tr.ransom
AVG	Win32:Trojan-gen
Panda	Trj/GdSda.A
CrowdStrike	win/malicious_confidence_70% (W)

How to remove Malware.AI.4280917069?

Malware.AI.4280917069 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X