Malware

Midie.58384 information

Malware Removal

The Midie.58384 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Midie.58384 virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Reads data out of its own binary image
  • CAPE extracted potentially suspicious content
  • Drops a binary and executes it
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid
  • CAPE detected the embedded pe malware family
  • Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine Midie.58384?



File Info:

name: 9E8DD290C7D165465B9E.mlw
path: /opt/CAPEv2/storage/binaries/8cb01d0e53a0952cd7a8990fe9f3d3a696e6aff0fd6c003153386262daaa991f
crc32: D695C031
md5: 9e8dd290c7d165465b9e220cd83e2057
sha1: 2f8a04283b1d8d683d0c3f87f50ed65249b54187
sha256: 8cb01d0e53a0952cd7a8990fe9f3d3a696e6aff0fd6c003153386262daaa991f
sha512: 761fb3df21fa28a7069923071d1b110358bca246a687a67feff4ee16d297d104a5ba8e049402b90073d2aa50493f4caaff66eb7e02c0c5504ce90306da13bd9b
ssdeep: 3072:GXTKUL3GUVZhCjG8G3GbGVGBGfGuGxGWYcrf6KadE:GXuUtAYcD6Kad
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T18324523AA0C62906F749BCBD672E97B201B4944B254F11EB36720EDA1E1CDD0C5786BF
sha3_384: c1516446834a92e9eb2ad340409824ef92ed36eeb64690d53a82ae220e1269a0033988af097e9ddb28da641707ef2b4b
ep_bytes: 68d4124000e8eeffffff000050000000
timestamp: 2010-07-27 13:12:49


Version Info:

Translation: 0x0409 0x04b0
ProductName: hskWOmKa
FileVersion: 5.89
ProductVersion: 5.89
InternalName: hskWOmKa
OriginalFilename: hskWOmKa.exe

Midie.58384 also known as:

BkavW32.AIDetectMalware
LionicWorm.Win32.VBNA.mzJ8
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Midie.58384
ClamAVWin.Trojan.Vobfus-80
FireEyeGen:Variant.Midie.58384
CAT-QuickHealWorm.Vobfus.S29851993
SkyhighBehavesLike.Win32.Generic.dt
McAfeeVBObfus.dw
Cylanceunsafe
ZillyaWorm.VBNAGen.Win32.1
SangforSuspicious.Win32.Save.a
CrowdStrikewin/malicious_confidence_100% (W)
AlibabaWorm:Win32/vobfus.1030
K7GWEmailWorm ( 00568eb71 )
K7AntiVirusEmailWorm ( 00568eb71 )
BitDefenderThetaAI:Packer.6830461620
VirITWorm.Win32.VBNA.ALXM
SymantecW32.Changeup.C
tehtrisGeneric.Malware
ESET-NOD32Win32/AutoRun.VB.RT
APEXMalicious
CynetMalicious (score: 100)
KasperskyTrojan.Win32.Agent.ahhev
BitDefenderGen:Variant.Midie.58384
NANO-AntivirusTrojan.Win32.AutoRun.ewkiex
SUPERAntiSpywareTrojan.Agent/Gen-FakeAlert[Alg]
AvastWin32:AutoRun-BLX [Wrm]
TencentWorm.Win32.Vbna.aad
EmsisoftGen:Variant.Midie.58384 (B)
BaiduWin32.Trojan.VB.a
F-SecureWorm.WORM/VBNA.U
DrWebTrojan.MulDrop5.1572
VIPREGen:Variant.Midie.58384
TrendMicroWORM_VOBFUS.SMP6
SophosMal/SillyFDC-D
SentinelOneStatic AI – Malicious PE
GDataGen:Variant.Midie.58384
JiangminTrojan/Generic.baxgk
WebrootW32.Obfuscated.Gen
GoogleDetected
AviraWORM/VBNA.U
Antiy-AVLWorm/Win32.VBNA.alxm
Kingsoftmalware.kb.a.1000
XcitiumWorm.Win32.VBNA.AQ@25agwt
ArcabitTrojan.Midie.DE410
ViRobotWorm.Win32.Autorun.159744.E
ZoneAlarmTrojan.Win32.Agent.ahhev
MicrosoftWorm:Win32/Vobfus!pz
VaristW32/Vobfus.I.gen!Eldorado
AhnLab-V3Worm/Win32.VBNA.R25526
VBA32TScope.Trojan.VB
ALYacGen:Variant.Midie.58384
MAXmalware (ai score=88)
MalwarebytesGeneric.Malware.AI.DDS
PandaW32/Lineage.KFS
TrendMicro-HouseCallWORM_VOBFUS.SMP6
RisingTrojan.VBEx!1.99F5 (CLASSIC)
YandexTrojan.GenAsa!wTNcUxpBLvg
IkarusWorm.Win32.Vobfus
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/VBObfus.BDBD!tr
AVGWin32:AutoRun-BLX [Wrm]
Cybereasonmalicious.83b1d8
DeepInstinctMALICIOUS

How to remove Midie.58384?

Midie.58384 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment