About “Midie.109095” infection

The Midie.109095 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Midie.109095 virus can do?

Authenticode signature is invalid
Anomalous binary characteristics

How to determine Midie.109095?


File Info:
name: 025E21BA6D7868B4FBE8.mlw
path: /opt/CAPEv2/storage/binaries/2f33bd5c136d1d2c2adbb64f6364c52d9ef9316224a95742fceb77ba659b7e1b
crc32: A8C474CB
md5: 025e21ba6d7868b4fbe8ccc9bc5f4f4a
sha1: c4d4f8b3820f1bded8999228563524fda3f38c2c
sha256: 2f33bd5c136d1d2c2adbb64f6364c52d9ef9316224a95742fceb77ba659b7e1b
sha512: 0763c05b2883aed2e93ddbc32ecec9609f93d0a1007a736af7bb261dbc5cea6b7a526ede6155b8316ac49d7a0e80f8fcbbe1c444f7d6625117a64ab9ca9f0ddc
ssdeep: 3072:N3QtHWz+dd9D7fcNCHfdzLpv5pavEtAtFFFFFFFtbRlv8EJa985eAnttw0qFgyLI:FFbUEYGQFls7hDv
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T175E4FE55B61AD46DD3B142748CE2E4ECB6207C36EE046D8B31D27B0F7AB67D1D828722
sha3_384: 0bf58a5f7c733daa6351b5bf34bffb6c7111456104e0433e4bd9a19f6f4b1137557857a59e65a0c99c19d2d122a194b6
ep_bytes: 7c00bf9814400057e8d8ffffff4f67dc
timestamp: 2022-03-17 19:13:05

Version Info:
CompanyName: Canasta BV
FileDescription: 
FileVersion: 5.0.0.9
InternalName: 
LegalCopyright: Copyright 1993-2003 Canasta BV
LegalTrademarks: 
OriginalFilename: 
ProductName: 
ProductVersion: 1.0.0.0
Comments: 
Translation: 0x0409 0x04e4

Midie.109095 also known as:

Lionic	Trojan.Win32.Mbro.lnqz
Elastic	malicious (high confidence)
DrWeb	BackDoor.Comet.2042
MicroWorld-eScan	Gen:Variant.Midie.109095
FireEye	Generic.mg.025e21ba6d7868b4
McAfee	GenericRXSE-UM!025E21BA6D78
Cylance	Unsafe
Sangfor	Trojan.Win32.GenericML.xnet
Alibaba	TrojanDropper:Win32/XPACK.9491f091
BitDefenderTheta	Gen:NN.ZexaE.34666.Qm0@aG986Mci
Symantec	ML.Attribute.HighConfidence
TrendMicro-HouseCall	TROJ_GEN.R06BC0WCN22
Kaspersky	UDS:Trojan.Multi.GenericML.xnet
BitDefender	Gen:Variant.Midie.109095
Avast	Win32:Malware-gen
Ad-Aware	Gen:Variant.Midie.109095
F-Secure	Trojan.TR/Crypt.XPACK.Gen
TrendMicro	TROJ_GEN.R06BC0WCN22
McAfee-GW-Edition	GenericRXSE-UM!025E21BA6D78
Sophos	Mal/Generic-S
Ikarus	Trojan.Dropper
GData	Gen:Variant.Midie.109095
Webroot	W32.Trojan.Gen
Avira	TR/Crypt.XPACK.Gen
Antiy-AVL	Trojan/Win32.SGeneric
Arcabit	Trojan.Midie.D1AA27
ViRobot	Trojan.Win32.Z.Wacatac.700416.M
ZoneAlarm	UDS:Trojan.Multi.GenericML.xnet
Microsoft	Trojan:Win32/Wacatac.B!ml
SentinelOne	Static AI – Malicious PE
AhnLab-V3	Trojan/Win.Generic.C5021659
ALYac	Gen:Variant.Midie.109095
VBA32	Trojan.Wacatac
APEX	Malicious
Rising	Trojan.Generic!8.C3 (CLOUD)
MAX	malware (ai score=89)
Fortinet	W32/PossibleThreat
AVG	Win32:Malware-gen
CrowdStrike	win/malicious_confidence_100% (W)

How to remove Midie.109095?

Midie.109095 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X