Midie.112484 malicious file

The Midie.112484 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Midie.112484 virus can do?

The binary contains an unknown PE section name indicative of packing
The binary likely contains encrypted or compressed data.
Authenticode signature is invalid

How to determine Midie.112484?


File Info:
name: 77AD42E0C78B77455DDA.mlw
path: /opt/CAPEv2/storage/binaries/e6af587ad25b42785fd6ad8fa4fc9b55e4d897d070dd02c0ee19f369c0f7a47d
crc32: 6336ABA8
md5: 77ad42e0c78b77455dda090dc795fa6c
sha1: 43a331348031a0fc985b3dfef98eeac621c426f9
sha256: e6af587ad25b42785fd6ad8fa4fc9b55e4d897d070dd02c0ee19f369c0f7a47d
sha512: a15277a450899936262183fb5373f87c61492fa5f47b12fd4c20e5c1887573f82ffe9ca38ad89ea75d062a4a0d2beecafcaffd485df642555a18db1857ccf5ab
ssdeep: 24576:b64Pw3ksxCx94RCHPlgCYRAo0u2SnEr87g2Xl2cKjTeqbGDGOr0VM2:bdI019Rlg/0u2KEr87ptkjbGDGe0VM2
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T13955DF427AD24471F58686B406BBB33E7E36B1026725CECBC3D0A8241D526E1E63F75E
sha3_384: 8591bd7c5e74e0eda24e0ae9fc89747f06246379b223ec78590ee7bfe6ccf173de2a3b91ff58525118682a08b4617871
ep_bytes: e856020000e97afeffff558becff7508
timestamp: 2022-05-24 17:01:51

Version Info:
CompanyName: Simon Tatham
ProductName: PuTTY suite
FileDescription: SSH, Telnet, Rlogin, and SUPDUP client
InternalName: PuTTY
OriginalFilename: PuTTY
FileVersion: Release 0.77 (with embedded help)
ProductVersion: Release 0.77
LegalCopyright: Copyright © 1997-2022 Simon Tatham.
Translation: 0x0809 0x04b0

Midie.112484 also known as:

tehtris	Generic.Malware
Cynet	Malicious (score: 99)
FireEye	Gen:Variant.Midie.112484
Cybereason	malicious.0c78b7
Cyren	W32/Rozena.DW.gen!Eldorado
Elastic	malicious (high confidence)
APEX	Malicious
Kaspersky	HEUR:Trojan.Win32.Cometer.gen
BitDefender	Gen:Variant.Midie.112484
MicroWorld-eScan	Gen:Variant.Midie.112484
Avast	Win32:Evo-gen [Trj]
Ad-Aware	Gen:Variant.Midie.112484
Emsisoft	Gen:Variant.Midie.112484 (B)
F-Secure	Heuristic.HEUR/AGEN.1238230
VIPRE	Gen:Variant.Midie.112484
Trapmine	malicious.moderate.ml.score
Ikarus	Trojan.Win32.Rozena
GData	Gen:Variant.Midie.112484
Jiangmin	Trojan.Generic.hicvh
Avira	HEUR/AGEN.1238230
Antiy-AVL	Trojan/Generic.ASMalwS.51A
Arcabit	Trojan.Midie.D1B764
ZoneAlarm	HEUR:Trojan.Win32.Cometer.gen
Microsoft	Trojan:Win32/Wacatac.B!ml
Google	Detected
AhnLab-V3	Trojan/Win.Meterpreter.C5179052
ALYac	Gen:Variant.Midie.112484
MAX	malware (ai score=82)
Malwarebytes	Trojan.ShellCode
Rising	Trojan.Generic@AI.100 (RDML:UBEQLckmpGGxCLkuw8v25Q)
Fortinet	W32/Rozena.WI!tr
BitDefenderTheta	Gen:NN.ZexaF.34646.rD0@aadk5Ymi
AVG	Win32:Evo-gen [Trj]

How to remove Midie.112484?

Midie.112484 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X