Fake Trojan

What is “Win32/TrojanDownloader.FakeAlert.AQI”?

Malware Removal

The Win32/TrojanDownloader.FakeAlert.AQI is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Win32/TrojanDownloader.FakeAlert.AQI virus can do?

  • Sample contains Overlay data
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid

How to determine Win32/TrojanDownloader.FakeAlert.AQI?



File Info:

name: F7D9C9AB07498E7AAC11.mlw
path: /opt/CAPEv2/storage/binaries/b233984f9b2daad3dcab8abf48444d4516a37df22613840f7c85ad503dbc4ba0
crc32: 19C55228
md5: f7d9c9ab07498e7aac11ab3e56102287
sha1: 0b5b71ee861b215017db437f69a742a30a96398e
sha256: b233984f9b2daad3dcab8abf48444d4516a37df22613840f7c85ad503dbc4ba0
sha512: d9dfd9a1c1a99ebbfdde17c986508c5f2fc9b180ccaaf142548d49f1c9f0d1e20ba50329afd4daa00ee27a368bd2b6f014866aa258141499c018529ec970f94a
ssdeep: 768:6Cc5u13lPGba1x9MpgiUZXlv5ga7+l69emsEQhZX6oql6AAjqPYBm//nptSr:6Cc5uD+iAbUZXcaa0+ZX6u4fS
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1D773F22216377D4AF172FFB5C2CC39138948BE310A13866BC147AB1A49E2AD5D5F943E
sha3_384: be34ba5170732b9bfdfb8b7b48bba6f8b824283293f35168eaa35558dd69c909da3ae1155f6f8efbf17390023aef4d8e
ep_bytes: e92a0900000000000000000000000000
timestamp: 2009-05-23 17:27:09


Version Info:

0: [No Data]

Win32/TrojanDownloader.FakeAlert.AQI also known as:

BkavW32.AIDetect.malware1
Elasticmalicious (high confidence)
ClamAVWin.Trojan.Fraudload-16
FireEyeGeneric.mg.f7d9c9ab07498e7a
CAT-QuickHealDownloader.Renos.27081
McAfeeArtemis!F7D9C9AB0749
AlibabaTrojanDownloader:Win32/FakeAlert.958a066c
CrowdStrikewin/malicious_confidence_100% (W)
CyrenW32/Trojan2.NMZQ
SymantecTrojan.Gen.2
tehtrisGeneric.Malware
ESET-NOD32Win32/TrojanDownloader.FakeAlert.AQI
APEXMalicious
Paloaltogeneric.ml
CynetMalicious (score: 100)
KasperskyUDS:DangerousObject.Multi.Generic
ComodoMalCrypt.Indus!@1qrzi1
TrendMicroTROJ_FAKEAV.SMA1
McAfee-GW-EditionBehavesLike.Win32.Generic.lm
SophosMal/Generic-R
IkarusTrojan.Renos
JiangminTrojanDownloader.FraudLoad.nrs
MAXmalware (ai score=99)
Antiy-AVLTrojan/Generic.ASMalwFH.57
MicrosoftTrojan:Win32/Occamy.CB2
GoogleDetected
TrendMicro-HouseCallTROJ_FAKEAV.SMA1
RisingTrojan.Generic@AI.100 (RDML:E7HEkcHLHTK8AdcPA45kNA)
SentinelOneStatic AI – Malicious PE
FortinetW32/Generic.AC.41BC58
Cybereasonmalicious.e861b2

How to remove Win32/TrojanDownloader.FakeAlert.AQI?

Win32/TrojanDownloader.FakeAlert.AQI removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment