Malware.AI.737293905 removal instruction

The Malware.AI.737293905 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.737293905 virus can do?

Dynamic (imported) function loading detected
CAPE extracted potentially suspicious content
.NET file is packed/obfuscated with Confuser
The binary likely contains encrypted or compressed data.
Authenticode signature is invalid

How to determine Malware.AI.737293905?


File Info:
name: 6BAAB9AF083D967C5008.mlw
path: /opt/CAPEv2/storage/binaries/21df7ba94df5209924ef003d865ecf63821e27b48ed3e29a9d33ca2e91826409
crc32: 0AFE297E
md5: 6baab9af083d967c50089e4f2b870c6a
sha1: b7257462c73d97e5f066a1cfdcffc348edf23518
sha256: 21df7ba94df5209924ef003d865ecf63821e27b48ed3e29a9d33ca2e91826409
sha512: 0c46522480e0bbd8f53b5a13432bf5fbad3ae230f33128105f205015e2bd0a4287abb7a47380ab959724baddb660d57b9593c93f524f31fe3aba50ae3973153e
ssdeep: 6144:IEVxJu76MBQY2UEetjx5CMJzkv6T/mpbH4PtEB:IsutR2UEeH5CMJzkv6T/mpbH4PtEB
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T14E149188335875CFE537CC729A751C20EA62646F6B0BC203AC5F15D99B1DA87DF026A3
sha3_384: e2e13ee81502f567e532168ba5c67c0c7227dc61bfa3a8f1bbd0fc7c0a17a808b1c381bc58a0899a4707601bda01724a
ep_bytes: ff250020400000000000000000000000
timestamp: 2017-10-30 13:29:42

Version Info:
Translation: 0x0000 0x04b0
Comments: 
CompanyName: 
FileDescription: WindowsFormsApp2
FileVersion: 1.0.0.0
InternalName: WindowsFormsApp2.exe
LegalCopyright: Copyright ©  2017
LegalTrademarks: 
OriginalFilename: WindowsFormsApp2.exe
ProductName: WindowsFormsApp2
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

Malware.AI.737293905 also known as:

Bkav	W32.AIDetectNet.01
Lionic	Trojan.Win32.Malicious.4!c
Elastic	malicious (high confidence)
MicroWorld-eScan	Trojan.GenericKD.12670460
FireEye	Generic.mg.6baab9af083d967c
McAfee	Artemis!6BAAB9AF083D
Cylance	Unsafe
Sangfor	Trojan.Win32.GenericKD.12670460
K7AntiVirus	Riskware ( 0040eff71 )
Alibaba	Trojan:Win32/Tiggre.68a9a60c
K7GW	Riskware ( 0040eff71 )
CrowdStrike	win/malicious_confidence_100% (W)
Symantec	ML.Attribute.HighConfidence
APEX	Malicious
BitDefender	Trojan.GenericKD.12670460
NANO-Antivirus	Trojan.Win32.Tiggre.fbqagx
SUPERAntiSpyware	Trojan.Agent/Generic
Avast	Win32:Malware-gen
Ad-Aware	Trojan.GenericKD.12670460
Emsisoft	Trojan.GenericKD.12670460 (B)
Comodo	Malware@#1tssud65dhyg9
F-Secure	Trojan.TR/Tiggre.ubmgf
Zillya	Trojan.GenericKD.Win32.103344
McAfee-GW-Edition	Artemis!Trojan
Sophos	Mal/Generic-S
Ikarus	Trojan.Crypt
GData	Trojan.GenericKD.12670460
Jiangmin	Trojan.Generic.bnpkk
Webroot	W32.Malware.Gen
Avira	TR/Tiggre.ubmgf
MAX	malware (ai score=100)
Antiy-AVL	Trojan/Generic.ASMalwS.2274890
Kingsoft	Win32.Troj.Undef.(kcloud)
Microsoft	Backdoor:Win32/Bladabindi!ml
Cynet	Malicious (score: 99)
BitDefenderTheta	Gen:NN.ZemsilF.34606.mm0@aus1n3l
ALYac	Trojan.GenericKD.12670460
VBA32	Trojan.Tiggre
Malwarebytes	Malware.AI.737293905
Rising	Malware.Obfus/MSIL@AI.90 (RDM.MSIL:UbiAa4eQJyhAWCMMQ6rikQ)
SentinelOne	Static AI – Malicious PE
Fortinet	W32/Generic!tr
AVG	Win32:Malware-gen
Cybereason	malicious.f083d9
Panda	Trj/GdSda.A

How to remove Malware.AI.737293905?

Malware.AI.737293905 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X