Malware.AI.972232985 (file analysis)

The Malware.AI.972232985 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.972232985 virus can do?

Authenticode signature is invalid

How to determine Malware.AI.972232985?


File Info:
name: AF7BB68E1FE12BAE261D.mlw
path: /opt/CAPEv2/storage/binaries/f2ad764f7ded1b01c6e76ece7b6a3065b978c601ae7a5db40b9bef56f09f92e1
crc32: CB087003
md5: af7bb68e1fe12bae261d78be2f093f6e
sha1: c0978e32bad67e1b9db7345a9aed1d2a375f08e8
sha256: f2ad764f7ded1b01c6e76ece7b6a3065b978c601ae7a5db40b9bef56f09f92e1
sha512: 20eb93e2c94034ba01e6ec54e3ef2587ac6b83b700e7021c182549e39dd65e748f1744736f1fe3aa10c2b8be078fe1841c1fba7374a9053073dc3f42c1732cfc
ssdeep: 384:cvbWQQTgJ7MoxioJmnuH+SIUOeTACD8qOumPTkBGMqWMOby1oDj:vQQTE7MoxioJmnuH+SIUnTqqOzTTObyG
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T15CA20B54B881C0B2FCD028FEAAE95A764F4E593133B959C3D7F49E54A8305E3B13871A
sha3_384: f3928c548abf43e5a64a39813020821d22815d43838d59737690168ad23675512686b440b7b35709956c254ffdbc70d0
ep_bytes: 558bec81ec740c00005333c0565733ff
timestamp: 2018-03-25 20:51:34

Version Info:
0: [No Data]

Malware.AI.972232985 also known as:

Bkav	W32.AIDetect.malware1
DrWeb	Trojan.PWS.Panda.13229
MicroWorld-eScan	Trojan.Injector.DCI
FireEye	Generic.mg.af7bb68e1fe12bae
McAfee	GenericRXFY-HR!AF7BB68E1FE1
CrowdStrike	win/malicious_confidence_80% (D)
Symantec	Trojan.Coinbitminer
APEX	Malicious
BitDefender	Trojan.Injector.DCI
Ad-Aware	Trojan.Injector.DCI
Emsisoft	Trojan.Injector.DCI (B)
Comodo	Application.Win32.CoinMiner.BEX@7pt9re
McAfee-GW-Edition	GenericRXFY-HR!AF7BB68E1FE1
Sophos	Generic ML PUA (PUA)
GData	Trojan.Injector.DCI
Jiangmin	RiskTool.BitMiner.ajts
Antiy-AVL	Trojan/Generic.ASMalwFH.4456018
Microsoft	Trojan:Win32/Wacatac.B!ml
Cynet	Malicious (score: 100)
ALYac	Trojan.Injector.DCI
MAX	malware (ai score=80)
Malwarebytes	Malware.AI.972232985
Rising	Trojan.Generic@ML.100 (RDML:p+SrzS7SvGxwpXxi7XTgrg)

How to remove Malware.AI.972232985?

Malware.AI.972232985 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X