About “Midie.142666” infection

The Midie.142666 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Midie.142666 virus can do?

Sample contains Overlay data
Presents an Authenticode digital signature
Unconventionial binary language: Chinese (Simplified)

How to determine Midie.142666?


File Info:
name: 7584B67DA466CEA17F3E.mlw
path: /opt/CAPEv2/storage/binaries/3793356ffc440591b97463f874be28f21b000028aca9440a0c53467225906fe0
crc32: 5F5D59F7
md5: 7584b67da466cea17f3e0c5d0e118570
sha1: ad3ab0caa5b342107dee6e9d9250e4d9ec417bed
sha256: 3793356ffc440591b97463f874be28f21b000028aca9440a0c53467225906fe0
sha512: 24ca40b04fa2989dacacbe760f6fb573fe3634e7ad6122e09f8f5ba86e042bf4e5fb89c0a3f47c831daa68a829aa8862b2f01a612c09ed6cfe88d5043df847ae
ssdeep: 24576:GE1XworGQ0citVDJjNZPDcdZJvjQtwTeldNvnwkUmNwCZX9fc:GEVworGQJC1JjNZrc39QtwTo5nwk7w4+
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1246539207342C636FA9181B1572CDE1B51687E341B6314CBB3D83F3968B1AE35A3AE57
sha3_384: 078573de36e904e76ebca3288c5d2faa6b335d17b872a965161c394bf43158c6770198ff1a3276bf19ef947307b67449
ep_bytes: e8c7080000e97afeffffe94803000055
timestamp: 2023-10-11 03:57:38

Version Info:
Comments: http://www.2345.com
CompanyName: 2345.cc
FileDescription: 安全卫士-2345防护程序
FileVersion: 8.7.0.14321
InternalName: 2345SafeTray
LegalCopyright: 版权所有 (c) 2023，2345.cc
OriginalFilename: 2345SafeTray.exe
ProductName: 2345安全卫士
ProductVersion: 8.7.0
Translation: 0x0804 0x04b0

Midie.142666 also known as:

Bkav	W32.AIDetectMalware
Lionic	Adware.Win32.Ad2345.2!c
Elastic	malicious (high confidence)
MicroWorld-eScan	Gen:Variant.Midie.142666
FireEye	Gen:Variant.Midie.142666
Cylance	unsafe
VIPRE	Gen:Variant.Midie.142666
K7AntiVirus	Adware ( 0055ce2b1 )
Alibaba	AdWare:Win32/Generic.efb6c91a
K7GW	Adware ( 0055ce2b1 )
CrowdStrike	win/grayware_confidence_100% (W)
Arcabit	Trojan.Midie.D22D4A
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win32/2345.H potentially unwanted
Cynet	Malicious (score: 100)
Kaspersky	not-a-virus:HEUR:AdWare.Win32.Ad2345.gen
BitDefender	Gen:Variant.Midie.142666
Avast	Win32:Malware-gen
Emsisoft	Gen:Variant.Midie.142666 (B)
Zillya	Adware.Ad2345.Win32.5151
Sophos	Generic Reputation PUA (PUA)
Webroot	W32.Adware.Gen
ZoneAlarm	not-a-virus:HEUR:AdWare.Win32.Ad2345.gen
GData	Gen:Variant.Midie.142666
VBA32	BScope.Adware.Ad
ALYac	Gen:Variant.Midie.142666
MAX	malware (ai score=83)
Malwarebytes	PUP.Optional.ChinAd.DDS
TrendMicro-HouseCall	TROJ_GEN.R002H07K323
Rising	Adware.Ad2345!8.13C3C (TFE:5:UhnZ4DuUXkN)
Ikarus	PUA.2345
MaxSecure	Adware.W32.Ad2345.gen_274404
Fortinet	Riskware/2345
AVG	Win32:Malware-gen
DeepInstinct	MALICIOUS

How to remove Midie.142666?

Midie.142666 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X