Malware

What is “Malware.AI.907252092”?

Malware Removal

The Malware.AI.907252092 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.907252092 virus can do?

  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • Unconventionial binary language: Chinese (Simplified)
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX
  • Authenticode signature is invalid

How to determine Malware.AI.907252092?



File Info:

name: 154E41E782A307F63BDC.mlw
path: /opt/CAPEv2/storage/binaries/4c502665ac49f328fe15ddf28245884e07008913caef1e68fff5693794a0eba6
crc32: E53562E0
md5: 154e41e782a307f63bdc2175342472fd
sha1: 09480d6fa5a7d4529755207d745bfa5c1296749c
sha256: 4c502665ac49f328fe15ddf28245884e07008913caef1e68fff5693794a0eba6
sha512: 35d10f9b339c181217f236c9b03e5bfeed432c8b7306bf181da03a12408e1c3ae9fd3fa48ad7369d8b790c6e9536abb4ed9e1a0045d475ec0674914f491c6a9a
ssdeep: 12288:krFm9simikGawzo4BwGqyiMqW7KBPGi9X4Zf:y4iDiMEosriMqWuBN9IZf
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T141842351BF6E38AFDB6A61394233BD6D06E5E07A4E421EEF48043ED9FC431043E16A65
sha3_384: f6e1e82a8f65e9ba020bcf7a02fa76f1ea9c5b9cc57741f86d623bf56f61426393c833df8fa11e0f19e7ee6b3d2dad3a
ep_bytes: 60be00204b008dbe00f0f4ff57eb0b90
timestamp: 2010-06-14 02:36:29


Version Info:

FileVersion: 1.0.0.0
FileDescription: 绘霖餐饮管理系统
ProductName: 绘霖餐饮管理系统
ProductVersion: 1.0.0.0
CompanyName: 华科软件开发
LegalCopyright: 华科软件开发 版权所有
Comments: 本程序使用易语言编写(http://www.eyuyan.com)
Translation: 0x0804 0x04b0

Malware.AI.907252092 also known as:

LionicTrojan.Multi.Generic.4!c
Elasticmalicious (moderate confidence)
MicroWorld-eScanTrojan.GenericKD.61135828
FireEyeGeneric.mg.154e41e782a307f6
CAT-QuickHealRisktool.Flystudio.16885
McAfeeArtemis!154E41E782A3
CylanceUnsafe
VIPRETrojan.GenericKD.61135828
K7AntiVirusTrojan ( 005246d51 )
K7GWTrojan ( 005246d51 )
Cybereasonmalicious.fa5a7d
CyrenW32/Trojan.CLL.gen!Eldorado
SymantecML.Attribute.HighConfidence
tehtrisGeneric.Malware
ESET-NOD32a variant of Win32/Packed.FlyStudio.AA potentially unwanted
APEXMalicious
Paloaltogeneric.ml
ClamAVWin.Malware.Confidence-6629254-0
KasperskyUDS:DangerousObject.Multi.Generic
BitDefenderTrojan.GenericKD.61135828
NANO-AntivirusTrojan.Win32.Gendal.dfqtte
AvastWin32:Trojan-gen
Ad-AwareTrojan.GenericKD.61135828
EmsisoftTrojan.GenericKD.61135828 (B)
ComodoMalware@#3a6oxkfxqsanq
DrWebTrojan.MulDrop20.27410
TrendMicroTROJ_GEN.R03BC0GH622
McAfee-GW-EditionBehavesLike.Win32.Flyagent.fc
Trapminemalicious.moderate.ml.score
SophosGeneric PUA AJ (PUA)
SentinelOneStatic AI – Malicious PE
GDataWin32.Trojan.PSE.1DNV50E
GoogleDetected
MAXmalware (ai score=89)
Antiy-AVLTrojan/Generic.ASCommon.FA
ViRobotTrojan.Win32.Z.Suspectcrc.393728
ZoneAlarmUDS:DangerousObject.Multi.Generic
MicrosoftTrojan:Win32/Wacatac.A!ml
CynetMalicious (score: 100)
ALYacTrojan.GenericKD.61135828
VBA32BScope.Trojan.MulDrop
MalwarebytesMalware.AI.907252092
TrendMicro-HouseCallTROJ_GEN.R03BC0GH622
RisingTrojan.Win32.Generic.14FB0539 (C64:YzY0OlxzrvsLOhQt)
YandexBackdoor.BlackHole!AD9zGPLFGLs
IkarusTrojan.SuspectCRC
MaxSecureDropper.Dinwod.frindll
FortinetRiskware/FlyStudio
AVGWin32:Trojan-gen
PandaTrj/CI.A

How to remove Malware.AI.907252092?

Malware.AI.907252092 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment