Midie.140131 removal guide

The Midie.140131 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Midie.140131 virus can do?

CAPE extracted potentially suspicious content
Unconventionial language used in binary resources: Chinese (Simplified)
Authenticode signature is invalid
Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine Midie.140131?


File Info:
name: DCFE2DDCB8B26987F1A2.mlw
path: /opt/CAPEv2/storage/binaries/0278965db82a7947eb53f87d9d8fbdb7d0ea921595d67b0e4f5c763e80295370
crc32: 50FD3551
md5: dcfe2ddcb8b26987f1a2d6eb76a8a680
sha1: 3e887192a03245a24d0e280b32eab7ac5b3202d0
sha256: 0278965db82a7947eb53f87d9d8fbdb7d0ea921595d67b0e4f5c763e80295370
sha512: 6c1f866585b52c9dac7817c3196e7488624a2898f8b0e6edd769ff4e6b8df1f48acf6fb873256b535ae3f39059b537fb040611cdf988d3c93f5d40fddd428560
ssdeep: 6144:RMWeO6Q5rm1rxDsU1QMpBVmsxmQbozPzRsB4nqYqFc0jbqRp1NGB00q03fLIkmOq:eWP15Q9LOMpnBw6o7KmdznIB0ILI07
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T153D47E12B6F244F5C62A253209BA2735E975EB030B25CFC39365DEFC2C36961AE37125
sha3_384: b8db1074bba88f7ddb44e801b43d6eccdfaabe4961ba1ba3982db354cd9c91e2512b8fe19991b285694ec5fc2301dd91
ep_bytes: 558bec6aff6870044800686c85450064
timestamp: 2013-04-28 22:39:09

Version Info:
0: [No Data]

Midie.140131 also known as:

Bkav	W32.AIDetectMalware
Lionic	Trojan.Win32.Generic.ltZz
Cynet	Malicious (score: 100)
FireEye	Generic.mg.dcfe2ddcb8b26987
CAT-QuickHeal	Risktool.Flystudio.16886
Skyhigh	BehavesLike.Win32.Generic.jh
ALYac	Gen:Variant.Midie.140131
Cylance	unsafe
Sangfor	Suspicious.Win32.Save.ins
CrowdStrike	win/malicious_confidence_60% (D)
Alibaba	RiskWare:Win32/FlyStudio.05a56d86
K7GW	Trojan ( 005246d51 )
K7AntiVirus	Trojan ( 005246d51 )
Arcabit	Trojan.Midie.D22363
BitDefenderTheta	Gen:NN.ZexaF.36608.NqW@aa55mHhb
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (high confidence)
ESET-NOD32	a variant of Win32/FlyStudio.HackTool.A potentially unwanted
APEX	Malicious
ClamAV	Win.Malware.Qqpass-9877089-0
Kaspersky	not-a-virus:UDS:RiskTool.Win32.FlyStudio.duk
BitDefender	Gen:Variant.Midie.140131
MicroWorld-eScan	Gen:Variant.Midie.140131
Avast	Win32:Malware-gen
Sophos	Generic Reputation PUA (PUA)
F-Secure	Trojan:W32/DelfInject.R
VIPRE	Gen:Variant.Midie.140131
TrendMicro	TROJ_GEN.R002C0PKP23
Trapmine	malicious.moderate.ml.score
Emsisoft	Gen:Variant.Midie.140131 (B)
Ikarus	Trojan.Crypt
Jiangmin	Backdoor/Blackhole.cyz
Varist	W32/A-b0178058!Eldorado
Antiy-AVL	Trojan/Win32.FlyStudio.a
Kingsoft	malware.kb.a.1000
Xcitium	Worm.Win32.Dropper.RA@1qraug
Microsoft	Trojan:Win32/Wacatac.B!ml
ZoneAlarm	not-a-virus:RiskTool.Win32.FlyStudio.duk
GData	Win32.Application.PSE.1OV7PVV
Google	Detected
McAfee	GenericRXBC-JR!DCFE2DDCB8B2
MAX	malware (ai score=83)
VBA32	BScope.Trojan.Rootkit
Malwarebytes	Generic.Malware.AI.DDS
TrendMicro-HouseCall	TROJ_GEN.R002C0PKP23
Rising	Trojan.Generic@AI.99 (RDML:dH78n+/K/B5+pGBjGx/ysA)
Yandex	Trojan.GenAsa!fZKvVA7bu5s
SentinelOne	Static AI – Malicious PE
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	W32/CoinMiner.PHP!tr
AVG	Win32:Malware-gen
Cybereason	malicious.2a0324
DeepInstinct	MALICIOUS

How to remove Midie.140131?

Midie.140131 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X