Malware

Malware.AI.4291421189 (file analysis)

Malware Removal

The Malware.AI.4291421189 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.4291421189 virus can do?

  • Presents an Authenticode digital signature
  • Reads data out of its own binary image
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid
  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

Related domains:

wpad.local-net

How to determine Malware.AI.4291421189?



File Info:

name: 009EA0F4536410647CBB.mlw
path: /opt/CAPEv2/storage/binaries/21d172f4a521e6b26ad6b5a134c6bc8dcb4a39c51024089f4b7350b51cd26b0b
crc32: E12896A0
md5: 009ea0f4536410647cbbcde61201da25
sha1: f1284d70609a42368c26cd39b705429a846cd061
sha256: 21d172f4a521e6b26ad6b5a134c6bc8dcb4a39c51024089f4b7350b51cd26b0b
sha512: b6e943581218c3148b1e406ec081efe15a5ebe611b0c5f942f8fb60222cb8ea925acc2fb9f7c1a207f3ce033496e01c9fe712da1bf9a48c67173c5cd31101c20
ssdeep: 49152:1VzhTjR0QinZXckatEJl/LY5wEqX04Azd9jhguBtXc4SLSQohEoIAjU:1VF3R0QkEuEqX5qMkc4SLHgzw
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T165C533123AF6C5FBC5421031EDCCF7B660F9E7988B55488337D0D788A7B26E1926891E
sha3_384: fbfd9507a6cc81379c1a1763142edeca79dc3ee09fd4fbd0f90d5df4f5e6c2a03631b1642c52f346a272a466be8f9112
ep_bytes: 558bec6aff6810664200682c1b420064
timestamp: 2016-10-04 15:12:31


Version Info:

CompanyName: Igor Pavlov
FileDescription: 7z Console SFX
FileVersion: 16.04
InternalName: 7z.sfx
LegalCopyright: Copyright (c) 1999-2016 Igor Pavlov
OriginalFilename: 7z.sfx.exe
ProductName: 7-Zip
ProductVersion: 16.04
Translation: 0x0409 0x04b0

Malware.AI.4291421189 also known as:

LionicTrojan.Win32.Generic.4!c
McAfeeArtemis!009EA0F45364
CylanceUnsafe
SymantecTrojan.Gen.MBT
TrendMicro-HouseCallTROJ_GEN.R002H0CKL21
AvastFileRepMalware
KasperskyHEUR:Trojan.Win32.Generic
VIPRETrojan.Win32.Generic!BT
McAfee-GW-EditionArtemis!Trojan
SophosMal/Generic-S
Paloaltogeneric.ml
AviraHEUR/AGEN.1125114
MicrosoftTrojan:Win32/Wacatac.B!ml
MalwarebytesMalware.AI.4291421189
APEXMalicious
YandexTrojan.Agent!/XpRUXQWBNo
FortinetW32/Generic!tr
AVGFileRepMalware

How to remove Malware.AI.4291421189?

Malware.AI.4291421189 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment