Should I remove "Malware.AI.5147756"?

The Malware.AI.5147756 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Malware.AI.5147756 virus can do?

SetUnhandledExceptionFilter detected (possible anti-debug)
Possible date expiration check, exits too soon after checking local time
Dynamic (imported) function loading detected
A process created a hidden window
Authenticode signature is invalid
Uses Windows utilities for basic functionality
Uses Windows utilities for basic functionality
Deletes its original binary from disk
Attempts to modify proxy settings
Anomalous binary characteristics

Related domains:

wpad.local-net

www.56561234.com

How to determine Malware.AI.5147756?


File Info:
name: 17FE4E3C68B5FD09002F.mlw
path: /opt/CAPEv2/storage/binaries/f4b7b3c6d9aa60a5a09301067c11fd591c5b8b22e2405bde1e21a016dd7d3dd6
crc32: 00557F53
md5: 17fe4e3c68b5fd09002f3c8884b7ac53
sha1: 833eac98070cfc374b76598164dba989f96cc7a2
sha256: f4b7b3c6d9aa60a5a09301067c11fd591c5b8b22e2405bde1e21a016dd7d3dd6
sha512: e42cf1691a5089ab8581da59316961c5c8e9ff6c2a583b64e24f2ce223562663d2154709985df9d5af4cdce8dfcf7682c0f7d9ca9ad1543c7c30f2689154c9e6
ssdeep: 384:MSWIKU3tkDAYhW2gHxw5a6YXduS00e97JIY77ovUshKSJuOw7:MSVKU3tkDa2CxaJSs97JIHD3JuOi
type: PE32+ executable (GUI) x86-64, for MS Windows
tlsh: T1F2B26E0B9E5640B2D61A84B2C6778611EFFE781236D63C4FAB50F5C61F71280D1FB46A
sha3_384: 6d036b4de10023786a76fc95b35b4ce42cadee481ce7eb55c7cc4cc004d25b3198086f14283a1f6ec547013ea41a22a7
ep_bytes: 4883ec28e8db0300004883c428e9fefc
timestamp: 2021-07-18 23:09:17

Version Info:
0: [No Data]

Malware.AI.5147756 also known as:

Lionic	Trojan.Win32.Agent.4!c
Elastic	malicious (high confidence)
DrWeb	Trojan.Siggen14.36378
MicroWorld-eScan	Trojan.Generic.30278312
FireEye	Generic.mg.17fe4e3c68b5fd09
CAT-QuickHeal	Trojan.Agent
ALYac	Trojan.Generic.30278312
Cylance	Unsafe
Sangfor	Suspicious.Win32.Save.a
K7AntiVirus	Trojan-Downloader ( 0057ddd01 )
Alibaba	TrojanDownloader:Win64/MalwareX.f7a77934
K7GW	Trojan-Downloader ( 0057ddd01 )
Cybereason	malicious.8070cf
BitDefenderTheta	Gen:NN.ZexaE.34294.aqX@a8U7DRii
Symantec	Trojan.Gen.MBT
ESET-NOD32	a variant of Win64/TrojanDownloader.Agent.KI
TrendMicro-HouseCall	TROJ_GEN.R002C0WKM21
Paloalto	generic.ml
ClamAV	Win.Malware.Latot-9879382-0
Kaspersky	HEUR:Trojan.Win32.Agent.gen
BitDefender	Trojan.Generic.30278312
NANO-Antivirus	Trojan.Win32.Small.ixtpml
Avast	Win32:TrojanX-gen [Trj]
Ad-Aware	Trojan.Generic.30278312
Emsisoft	Trojan.Generic.30278312 (B)
F-Secure	Heuristic.HEUR/AGEN.1143315
TrendMicro	TROJ_GEN.R002C0WKM21
McAfee-GW-Edition	BehavesLike.Win64.Dropper.mm
Sophos	Mal/Generic-S
SentinelOne	Static AI – Malicious PE
GData	Trojan.Generic.30278312
Jiangmin	Trojan.Schoolboy.kl
Avira	HEUR/AGEN.1143315
MAX	malware (ai score=89)
Antiy-AVL	Trojan/Win32.SchoolBoy
Gridinsoft	Ransom.Win64.Wacatac.sa
Arcabit	Trojan.Generic.D1CE02A8
ViRobot	Trojan.Win32.Z.Agent.25276.A
Microsoft	Trojan:Win32/Sabsik.FL.B!ml
Cynet	Malicious (score: 100)
AhnLab-V3	Trojan/Win.Generic.R434899
McAfee	Artemis!17FE4E3C68B5
VBA32	Trojan.Schoolboy
Malwarebytes	Malware.AI.5147756
Tencent	Malware.Win32.Gencirc.11d90ca6
Yandex	Trojan.SchoolBoy!HUtwSUUD4Hs
Ikarus	Trojan-Downloader.Win32.Small
Fortinet	W64/Agent.KI!tr.dldr
AVG	Win32:TrojanX-gen [Trj]
CrowdStrike	win/malicious_confidence_60% (W)

How to remove Malware.AI.5147756?

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

Should I remove “Malware.AI.5147756”?