Malware.AI.56382243 removal

The Malware.AI.56382243 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.56382243 virus can do?

The binary contains an unknown PE section name indicative of packing
The executable is compressed using UPX
Authenticode signature is invalid

How to determine Malware.AI.56382243?


File Info:
name: C5454E31AA7FCF356A9F.mlw
path: /opt/CAPEv2/storage/binaries/b2bf43429c74ad09d578c96a609485b19e3ae1fecabe775215951095c85c25e9
crc32: A427AAB3
md5: c5454e31aa7fcf356a9ff77cace26e17
sha1: ac9dd7de833a2a04de5ffb216654de0af55d0587
sha256: b2bf43429c74ad09d578c96a609485b19e3ae1fecabe775215951095c85c25e9
sha512: 4f08d43dafe17116b49ca12cdce408c0ff9306c3334225e56ee7f7420bae0bf750e4bc04ebfabfb4a214a525b7bcbe68e1b41edb63870f9a8bc2ec17a6da63c1
ssdeep: 192:cXfv/rW6JRry93jzckjPCNBxYjeIJjLyw5fD/4OcDh3Myzsp4dGbOFALoEtylxRH:crtJRi3FjPQBxYSgLBoMyzikGhboXIK
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1A7235CCBB63D465FCC28127295119D3AD034E514019A4347B59EBC1FEFB7483694EEE8
sha3_384: f352823777d107af550a9a8c6992ab8884342354c844e96d7bd47f426652124bac04d23be40cb6598e47815a8de43a36
ep_bytes: 60be158041008dbeeb8ffeff5783cdff
timestamp: 2007-08-19 08:31:03

Version Info:
0: [No Data]

Malware.AI.56382243 also known as:

Lionic	Trojan.Win32.Jsbi.4!c
MicroWorld-eScan	Gen:Trojan.Heur.cmW@!Fn0jsbi
FireEye	Generic.mg.c5454e31aa7fcf35
ALYac	Gen:Trojan.Heur.cmW@!Fn0jsbi
Malwarebytes	Malware.AI.56382243
VIPRE	Gen:Trojan.Heur.cmW@!Fn0jsbi
Sangfor	Suspicious.Win32.Save.a
Alibaba	Trojan:Win32/Generic.86e2624f
Cybereason	malicious.1aa7fc
BitDefenderTheta	AI:Packer.4A8E059D1C
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (moderate confidence)
APEX	Malicious
Paloalto	generic.ml
BitDefender	Gen:Trojan.Heur.cmW@!Fn0jsbi
Avast	Win32:Malware-gen
Emsisoft	Gen:Trojan.Heur.cmW@!Fn0jsbi (B)
McAfee-GW-Edition	BehavesLike.Win32.Generic.pz
Trapmine	malicious.moderate.ml.score
Sophos	Mal/Generic-S
SentinelOne	Static AI – Malicious PE
GData	Gen:Trojan.Heur.cmW@!Fn0jsbi
Antiy-AVL	Trojan/Win32.Wacatac
Xcitium	Packed.Win32.MUPX.Gen@24tbus
Arcabit	Trojan.Heur.E589F9
Microsoft	Program:Win32/Wacapew.C!ml
Cynet	Malicious (score: 100)
AhnLab-V3	Trojan/Win.Generic.R534374
McAfee	RDN/Generic.dx
MAX	malware (ai score=82)
Cylance	unsafe
TrendMicro-HouseCall	TROJ_GEN.R002H0CEF23
MaxSecure	Trojan.Malware.8405696.susgen
Fortinet	W32/ULPM.2C75!tr
AVG	Win32:Malware-gen
DeepInstinct	MALICIOUS
CrowdStrike	win/malicious_confidence_90% (D)

How to remove Malware.AI.56382243?

Malware.AI.56382243 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X