Malware

How to remove “Malware.AI.591004432”?

Malware Removal

The Malware.AI.591004432 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
6-day free trial available.

What Malware.AI.591004432 virus can do?

  • Dynamic (imported) function loading detected
  • CAPE extracted potentially suspicious content
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • Binary compilation timestomping detected

How to determine Malware.AI.591004432?


File Info:

name: 6EA03181CE05CC3248FB.mlw
path: /opt/CAPEv2/storage/binaries/63c0f1c50bdef7992d0a6dae7326ab3eaa4c584651957252875173f96729f59c
crc32: F97C8996
md5: 6ea03181ce05cc3248fb31ee531f8922
sha1: 0e8fe83380074766eeab3dc8fa325d55c8337b25
sha256: 63c0f1c50bdef7992d0a6dae7326ab3eaa4c584651957252875173f96729f59c
sha512: 901eda08d24754a57cf145814305e0242be3ce9e58435e2aee783c7448da2bf3c5f56b29724466b444980505fb25ae688938e8398a550654a46ddeae12ad8b8e
ssdeep: 196608:1vryvc8mVcVjv1GNvyuPv7VrgatVX7KPt2CG02DY:1vryvc8mVcVjv1GNvBv7VFVGzGbD
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T135D64AE1A690D990CB78217691AE79EC739875FE0F70EC3F2B0CB45E1CF929A64854C1
sha3_384: edbc481fc6b6bc33f69f6bf4a84628792f72c34303cb998f11e1fe05f366858f52a8674dbd8102b133a91d50bd7c57fd
ep_bytes: ff250020400000000000000000000000
timestamp: 2060-02-15 14:23:49

Version Info:

Translation: 0x0000 0x04b0
Comments: Multi csgo cheat loader, including tools and more...
CompanyName: Ninja Team
FileDescription: Ninja Loader
FileVersion: 1.0.0.2
InternalName: Ninja Loader.exe
LegalCopyright: Copyright © Ninja Team 2021
LegalTrademarks:
OriginalFilename: Ninja Loader.exe
ProductName: Ninja Loader
ProductVersion: 1.0.0.2
Assembly Version: 1.0.0.2

Malware.AI.591004432 also known as:

LionicTrojan.Win32.Lazy.4!c
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Lazy.145214
FireEyeGeneric.mg.6ea03181ce05cc32
ALYacGen:Variant.Lazy.145214
CylanceUnsafe
SangforPUP.Win32.MiscX.gen
CrowdStrikewin/malicious_confidence_100% (W)
K7GWTrojan ( 005639561 )
K7AntiVirusTrojan ( 005639561 )
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of MSIL/DllInject.ZB potentially unsafe
APEXMalicious
Paloaltogeneric.ml
BitDefenderGen:Variant.Lazy.145214
AvastFileRepMalware [Misc]
Ad-AwareGen:Variant.Lazy.145214
McAfee-GW-EditionArtemis!Trojan
EmsisoftGen:Variant.Lazy.145214 (B)
SentinelOneStatic AI – Malicious PE
GDataMSIL.Trojan.BSE.1OSMB4Z
AviraTR/Dropper.Gen
MAXmalware (ai score=80)
ArcabitTrojan.Lazy.D2373E
MicrosoftTrojan:Win32/Wacatac.B!ml
CynetMalicious (score: 99)
AhnLab-V3Malware/Win.Generic.C4534578
Acronissuspicious
McAfeeArtemis!6EA03181CE05
MalwarebytesMalware.AI.591004432
TrendMicro-HouseCallTROJ_GEN.R002H0CC622
YandexRiskware.Agent!cJzDVvU/A+w
MaxSecureTrojan.Malware.300983.susgen
FortinetAdware/DllInject
BitDefenderThetaGen:NN.ZemsilF.34666.@p0@aapjQnd
AVGFileRepMalware [Misc]
Cybereasonmalicious.380074

How to remove Malware.AI.591004432?

Malware.AI.591004432 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment