Malware

What is “Malware.AI.922855769”?

Malware Removal

The Malware.AI.922855769 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.922855769 virus can do?

  • CAPE extracted potentially suspicious content
  • Unconventionial binary language: Russian
  • Unconventionial language used in binary resources: Russian
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX
  • Authenticode signature is invalid
  • Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine Malware.AI.922855769?



File Info:

name: F2EA410A5ADF94E8C6B8.mlw
path: /opt/CAPEv2/storage/binaries/ad93442bab5dd77ef52bfb2c44f2f0eecb093cfa07a048f32789cd83ade1993b
crc32: 98482A23
md5: f2ea410a5adf94e8c6b8b301d1db1c88
sha1: 1deb99b7d1f11863d2355aad91cc7a3ae35b9029
sha256: ad93442bab5dd77ef52bfb2c44f2f0eecb093cfa07a048f32789cd83ade1993b
sha512: 1433d1756cb3cd66403c7d7b535d9fdda1bbea6e0d23bb62d03b9a2df0bf7082ce08fecbe99401f64a1fb93dd732749701b96bd7ae6dc9617c4211cf9b80bb67
ssdeep: 24576:CDnNEWjCR2X8mCWNpENtRtakFemRtcossnG4nbQamw/cJNIEjCvcdj2bEdLo7S6Z:CNySuLjemRzssG4//eNIEjCvMre7S6j
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T100552353B504E941C62931F5CD5AC6E004693EFDEC882B027AF8B34EAA3486BDD3B55D
sha3_384: 81d04a13db0155d23dc8bc271535602a6f8cfb8b589175c3bb361fb5a51601bdaf0fced825f089eae80f21ebefbc9cee
ep_bytes: 60be00b06f008dbe0060d0ff5783cdff
timestamp: 2013-06-29 11:06:26


Version Info:

CompanyName: R.G. Revenants
FileDescription: R.G. Revenants - Setup
FileVersion: 1.0.1.2
LegalCopyright: R.G. Revenants
ProductName: R.G. Revenants - Setup
ProductVersion: 2.1
Comments: R.G. Revenants, 2013
Translation: 0x0419 0x04e3

Malware.AI.922855769 also known as:

BkavW32.AIDetectMalware
LionicTrojan.Win32.Generic.4!c
MalwarebytesMalware.AI.922855769
SangforVirus.Win32.Save.a
CrowdStrikewin/grayware_confidence_60% (D)
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/Revenants.A potentially unsafe
APEXMalicious
SUPERAntiSpywareTrojan.Agent/Gen-BtcMine
AvastWin32:Malware-gen
McAfee-GW-EditionBehavesLike.Win32.PUPXRA.tc
Trapminemalicious.high.ml.score
SophosGeneric Reputation PUA (PUA)
IkarusPUA.Revenants
WebrootW32.Malware.Gen
Antiy-AVLRiskWare/Win32.Revenants
XcitiumMalware@#2mcm378dpt4xu
GoogleDetected
McAfeeArtemis!F2EA410A5ADF
VBA32BScope.Trojan.BtcMine
Cylanceunsafe
RisingPUA.Revenants!8.1B1C (CLOUD)
YandexTrojan.GenAsa!P659ujxzgr8
SentinelOneStatic AI – Suspicious PE
AVGWin32:Malware-gen
DeepInstinctMALICIOUS

How to remove Malware.AI.922855769?

Malware.AI.922855769 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment