Malware

Linux/Mirai.AYU information

Malware Removal

The Linux/Mirai.AYU is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
6-day free trial available.

What Linux/Mirai.AYU virus can do?

  • Injection (inter-process)
  • Injection with CreateRemoteThread in a remote process
  • Uses Windows utilities for basic functionality
  • A potential decoy document was displayed to the user
  • Network activity detected but not expressed in API logs

How to determine Linux/Mirai.AYU?


File Info:

crc32: 5E6A3747
md5: 0592ffcd410d4158b1c4b1328dc4014c
name: upload_file
sha1: 2492921f3d7e78fea94056e0dbd0f9f6ef1482eb
sha256: ed8a7cee07769366bd1c0fde84d4422d81a728cb5d9e464bf13fb55cd0dd6892
sha512: d791677722e1200ce1c2ea5306421fd9200e755c8bffcd811c2b650b89ebccc0f00a5d92a7123a513d2d43b4afbf4b1db6315189d5da106ac339dafd42ae5b03
ssdeep: 384:aifp/P8sIcc3+L9k/c71XUvuvRhNWnutjiMj7IFWJXjeLu3E8gQqeJRm:ac53r91XOuvT8nKGMAha3EvQ8
type: ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, stripped

Version Info:

0: [No Data]

Linux/Mirai.AYU also known as:

MicroWorld-eScanTrojan.GenericKD.34398431
FireEyeTrojan.GenericKD.34398431
ALYacTrojan.GenericKD.34398431
SymantecTrojan.Gen.NPE
ESET-NOD32a variant of Linux/Mirai.AYU
TrendMicro-HouseCallBackdoor.Linux.ZYX.USELVHI20
AvastELF:Mirai-AST [Trj]
ClamAVUnix.Trojan.Mirai-7732430-0
BitDefenderTrojan.GenericKD.34398431
AegisLabTrojan.Linux.Mirai.K!c
Ad-AwareTrojan.GenericKD.34398431
F-SecureMalware.LINUX/Mirai.elxgy
TrendMicroBackdoor.Linux.ZYX.USELVHI20
SophosMal/Generic-S
IkarusTrojan.Linux.Mirai
GDataTrojan.GenericKD.34398431
AviraLINUX/Mirai.elxgy
MAXmalware (ai score=87)
Antiy-AVLTrojan/Linux.Mirai
ArcabitTrojan.Generic.D20CE0DF
Avast-MobileELF:Mirai-AYN [Trj]
CynetMalicious (score: 85)
SentinelOneDFI – Malicious ELF
FortinetLinux/Mirai.AYU!tr
BitDefenderThetaGen:NN.Mirai.34186
AVGELF:Mirai-AST [Trj]

How to remove Linux/Mirai.AYU?

Linux/Mirai.AYU removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment