Malware.AI.449740390 removal tips

The Malware.AI.449740390 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.449740390 virus can do?

Unconventionial binary language: Russian
Unconventionial language used in binary resources: Russian
The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid

How to determine Malware.AI.449740390?


File Info:
name: 9CE4DE0243938FB67C3D.mlw
path: /opt/CAPEv2/storage/binaries/d41d10c2eaa30b236a111b20e239f159c77084bb8486d07de946d6139a4acf70
crc32: C8628BF5
md5: 9ce4de0243938fb67c3d540575bc965e
sha1: 07fb301a31ce2c03b90d23857ccaa96b5baedd40
sha256: d41d10c2eaa30b236a111b20e239f159c77084bb8486d07de946d6139a4acf70
sha512: 923a39e1c2e8789771c1d0b447778965d75a6e2b1b6618093743f61d7706ab0b2308b56c68a65b92deffddd69d47c3270dc205508646899a2ab55ea1f8714512
ssdeep: 24576:Qh4ssrZ5lSzgLz8qxL14Pn4inDochBTSIS777Z20zkuE1bMTzM0W40ybpJ35EsAD:QGBanHh9Sn7Z1XHM3275Ed60
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1F5855C23A284743BC426173B492F97545D3B7E203A9A8E5B6FF8AC4C0F752427D3A647
sha3_384: 098f4004ad2075c4a152318d93a8bdce7543da53657a6eb2f20cc1e8fe77f383ff5f693e3030c83b85fa5cd23f690c51
ep_bytes: 558bec83c4f0b860605700e8f0d4e8ff
timestamp: 2022-09-23 10:39:57

Version Info:
CompanyName: 
FileDescription: 
FileVersion: 1.0.0.5
InternalName: 
LegalCopyright: 
LegalTrademarks: 
OriginalFilename: 
ProductName: 
ProductVersion: 1.0.0.0
Comments: 
Translation: 0x0419 0x04e3

Malware.AI.449740390 also known as:

Lionic	Trojan.Win32.Banload.a!c
Elastic	malicious (high confidence)
MicroWorld-eScan	Gen:Variant.Zusy.439613
FireEye	Gen:Variant.Zusy.439613
McAfee	Artemis!9CE4DE024393
Cylance	Unsafe
VIPRE	Gen:Variant.Zusy.439613
Alibaba	TrojanDownloader:Win32/Banload.bfeeee6f
Cyren	W32/ABRisk.ECUY-0404
Symantec	Trojan.Gen.MBT
Cynet	Malicious (score: 99)
Kaspersky	HEUR:Trojan-Downloader.Win32.Banload.gen
BitDefender	Gen:Variant.Zusy.439613
Avast	Win32:DropperX-gen [Drp]
Tencent	Win32.Trojan-Downloader.Banload.Uimw
Ad-Aware	Gen:Variant.Zusy.439613
Sophos	Mal/Generic-S
Zillya	Downloader.Banload.Win32.102148
McAfee-GW-Edition	BehavesLike.Win32.Dropper.th
Emsisoft	Gen:Variant.Zusy.439613 (B)
GData	Gen:Variant.Zusy.439613
Jiangmin	TrojanDownloader.Banload.btdy
Avira	TR/Dldr.Banload.ytehi
Antiy-AVL	Trojan[Downloader]/Win32.Banload
Arcabit	Trojan.Zusy.D6B53D
Microsoft	Trojan:Win32/Wacatac.B!ml
Google	Detected
AhnLab-V3	Dropper/Win.Generic.R524556
ALYac	Gen:Variant.Zusy.439613
MAX	malware (ai score=86)
Malwarebytes	Malware.AI.449740390
TrendMicro-HouseCall	TROJ_GEN.R002H0CJ122
Rising	Downloader.Banload!8.15B (TFE:5:p5RKckOWJVH)
MaxSecure	Trojan.Malware.1660200.susgen
Fortinet	W32/PossibleThreat
AVG	Win32:DropperX-gen [Drp]
Panda	Trj/GdSda.A

How to remove Malware.AI.449740390?

Malware.AI.449740390 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X