Malware.AI.4288204974 removal instruction

The Malware.AI.4288204974 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.4288204974 virus can do?

Dynamic (imported) function loading detected
Authenticode signature is invalid
Binary compilation timestomping detected

How to determine Malware.AI.4288204974?


File Info:
name: 3712EF29171D85C2FC11.mlw
path: /opt/CAPEv2/storage/binaries/ff988d2601615223bda1179638aaa2ac9683b4aa9fcc538c41d9df4cbc4e7298
crc32: F883023D
md5: 3712ef29171d85c2fc11bad5fe83a995
sha1: 869e7833e8cd69bf38cb764c50114cdd98b34cf4
sha256: ff988d2601615223bda1179638aaa2ac9683b4aa9fcc538c41d9df4cbc4e7298
sha512: 58f2285af84e43587985dd1f261a5c80913e3485e3ca62cbca118716117ecd32f4c1c709323dc61022087648afccda2011836c9d89267081864a46e5d0ab8238
ssdeep: 3072:8Pb+VsiDZcWlLpvsiDZcWlLp9g3HRRUoOIP50lwUSO/w22pAGspE:sb+VsiDKM5siDKMkxUwUTI
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T19A64609C671E1CDECE89E839850316D1DCAF8D7880DADBDC9624B08A0771BD0E99D4F9
sha3_384: 57a7cd066ac58752dbd6899b9bc206dd60774772095555f6612e48e9964dec6810185e41d48b24ef68a8d2d500f7ab33
ep_bytes: ff250020400000000000000000000000
timestamp: 2041-11-07 13:39:04

Version Info:
Comments: Windows Litecore
CompanyName: Litecore
FileDescription: Windows Core
FileVersion: 1.0.0.0
InternalName: Launcher.exe
LegalCopyright: Copyright ©  2019
LegalTrademarks: Litecore
OriginalFilename: Launcher.exe
ProductName: Windows_Litecore
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0
Translation: 0x0000 0x04b0

Malware.AI.4288204974 also known as:

Lionic	Trojan.Win32.Generic.4!c
Cynet	Malicious (score: 100)
FireEye	Gen:Variant.Ursu.527326
ALYac	Gen:Variant.Ursu.527326
Cylance	Unsafe
Sangfor	Trojan.Win32.Generic.ky
K7AntiVirus	Trojan ( 005516201 )
Alibaba	Trojan:MSIL/Generic.e449b848
K7GW	Trojan ( 005516201 )
Cybereason	malicious.9171d8
BitDefenderTheta	Gen:NN.ZemsilF.34182.tm0@aKXbgin
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of MSIL/Agent.TGF
APEX	Malicious
Kaspersky	HEUR:Trojan.Win32.Generic
BitDefender	Gen:Variant.Ursu.527326
NANO-Antivirus	Trojan.Win32.Ursu.inbyii
MicroWorld-eScan	Gen:Variant.Ursu.527326
Avast	Win32:Malware-gen
Tencent	Malware.Win32.Gencirc.116ba258
Sophos	Mal/Generic-S
Comodo	Malware@#lcllf93094cy
VIPRE	Trojan.Win32.Generic!BT
McAfee-GW-Edition	Artemis
Emsisoft	Gen:Variant.Ursu.527326 (B)
SentinelOne	Static AI – Malicious PE
Jiangmin	Trojan.Generic.ehbhx
Avira	TR/Agent.coaqt
Antiy-AVL	Trojan/Generic.ASMalwS.2FE64F8
Microsoft	Trojan:Win32/Occamy.C
GData	Gen:Variant.Ursu.527326
McAfee	Artemis!3712EF29171D
VBA32	TScope.Trojan.MSIL
Malwarebytes	Malware.AI.4288204974
Yandex	Trojan.Agent!Z40qSJaTOVQ
Ikarus	Trojan.MSIL.Agent
MaxSecure	Trojan.Malware.7164915.susgen
Fortinet	MSIL/Agent.TGF!tr
AVG	Win32:Malware-gen
Panda	Trj/GdSda.A
CrowdStrike	win/malicious_confidence_60% (W)

How to remove Malware.AI.4288204974?

Malware.AI.4288204974 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X