Malware

Malware.AI.81136923 removal tips

Malware Removal

The Malware.AI.81136923 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.81136923 virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Dynamic (imported) function loading detected
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX
  • Authenticode signature is invalid

How to determine Malware.AI.81136923?



File Info:

name: 01EB711576B8CA8EF3F5.mlw
path: /opt/CAPEv2/storage/binaries/de8f4ce1389f52c185fd3c236f1214aae85fe2dfae0ce050380a1c42ee6b096b
crc32: 53690D84
md5: 01eb711576b8ca8ef3f5b1a94a22ce03
sha1: 8021cea6495b851cff817c7acc527783cc3a29ed
sha256: de8f4ce1389f52c185fd3c236f1214aae85fe2dfae0ce050380a1c42ee6b096b
sha512: c3d30b0c944d1bf2853fffeee230d386bec49649fba8449758436621f9c1f4b6579c6a12dfea4c474cc9f74de085e22035eb524a90727119b774e543829d852e
ssdeep: 6144:SU+iUDHaNJCYLzgSedoYIlvmIB7CSt3IJSlEqyRKKO7JfbmULoS:SUnUGJlgSqzlSt31vy9YNoS
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1855423436D499284DA7F13F87C3EAED41C30E8456A52EEE9147422FF763AAC597A0730
sha3_384: cbeb89288554794c4f0e02935cdc5906fa05cf706766d8638cf2f43820e5e357defeef8db40472abce70b3861d865c2d
ep_bytes: 60be002056008dbe00f0e9ff5789e58d
timestamp: 2011-02-27 17:24:31


Version Info:

Translation: 0x0409 0x04b0
Comments: ZMRPSFHAV
CompanyName: ICVTGGJCL
FileDescription: FYXEPEIQL
ProductName: KUSWRKZBD
FileVersion: 30.05.0021
ProductVersion: 30.05.0021
InternalName: qnubtwq
OriginalFilename: qnubtwq.exe

Malware.AI.81136923 also known as:

LionicTrojan.Win32.Agent.4!c
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Heur.ManBat.1
FireEyeGeneric.mg.01eb711576b8ca8e
McAfeeGenericRXAA-FA!01EB711576B8
CylanceUnsafe
K7AntiVirusTrojan ( 0021a0b51 )
AlibabaTrojan:Win32/Injector.ea12caf9
K7GWTrojan ( 0021a0b51 )
CrowdStrikewin/malicious_confidence_90% (W)
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/Injector.EYU
APEXMalicious
Paloaltogeneric.ml
KasperskyTrojan.Win32.Agent.qwfsom
BitDefenderGen:Heur.ManBat.1
NANO-AntivirusTrojan.Win32.MQI.ecfnhm
SUPERAntiSpywareTrojan.Agent/Gen-Injector[Variant]
AvastWin32:Malware-gen
TencentMalware.Win32.Gencirc.11daa515
Ad-AwareGen:Heur.ManBat.1
SophosML/PE-A + Troj/EyeStye-F
ComodoTrojWare.Win32.VBKrypt.cjb@4vg4ed
DrWebTrojan.MulDrop6.43306
ZillyaTrojan.Injector.Win32.527024
TrendMicroTROJ_GEN.R002C0RL221
McAfee-GW-EditionBehavesLike.Win32.Spyeye.dc
EmsisoftGen:Heur.ManBat.1 (B)
IkarusTrojan-Dropper.Win32.VB
GDataGen:Heur.ManBat.1
AviraTR/Dropper.Gen
Antiy-AVLTrojan/Generic.ASMalwS.1867F0D
MicrosoftTrojan:Win32/Sabsik.FL.B!ml
CynetMalicious (score: 100)
AhnLab-V3Trojan/Win.VBKrypt.R456408
BitDefenderThetaAI:Packer.101DB00320
ALYacGen:Heur.ManBat.1
MAXmalware (ai score=83)
VBA32SScope.Trojan.VBRA.6747
MalwarebytesMalware.AI.81136923
TrendMicro-HouseCallTROJ_GEN.R002C0RL221
RisingTrojan.Injector!1.A764 (CLASSIC)
YandexTrojan.Injector!DpFryf2O+9U
SentinelOneStatic AI – Malicious PE
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/Injector.MQI!tr
AVGWin32:Malware-gen
Cybereasonmalicious.576b8c

How to remove Malware.AI.81136923?

Malware.AI.81136923 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment