Midie.85542 removal guide

The Midie.85542 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Midie.85542 virus can do?

The binary contains an unknown PE section name indicative of packing
The binary likely contains encrypted or compressed data.
Executable file is packed/obfuscated with MPRESS
Authenticode signature is invalid

How to determine Midie.85542?


File Info:
name: 21F5BCA087C0EC9B867F.mlw
path: /opt/CAPEv2/storage/binaries/07288209476b871418fdd26abc9220fce40232fcde695f681b3715ceb960bc4e
crc32: BB1F42A9
md5: 21f5bca087c0ec9b867ff990f3d887db
sha1: bd16967338d52fa91e55abf8d3a7f181fdae75ec
sha256: 07288209476b871418fdd26abc9220fce40232fcde695f681b3715ceb960bc4e
sha512: 368eee2985cbfb0fa1cc8e7c705a3db9744ed602818b202e281bf500b8d0bc463450e52020b98240dd7b7a682ba2fcbb0a4222485805d968423dbfb61c131e73
ssdeep: 98304:wmsmpQ0Obv4CKee9fgvQiVFFd+fbGrp++VvyK9Pfm0dVX3MCEvDvtf1gDDS:wQQ0ohpe9vGFQfbSpoK9Pfm0dVrKfO
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1364623A5B8E2C2C1D56B32B2DC9170F486E82E12CC761D7F6D507E05F5B2A6E0632D4E
sha3_384: 4a02aff7228964663c05139d157939f85173ef7e7b6297d9ece8320f65695e7a0d6c70d7f145b462346c10c1af0ded3f
ep_bytes: 60e80000000058059f0200008b3003f0
timestamp: 2012-07-13 22:47:16

Version Info:
Translation: 0x0000 0x04b0
Comments: 
CompanyName: 
FileDescription: TopazGigapixelAI-6.0.0.0
FileVersion: 1.0.0.0
InternalName: Set-up.exe
LegalCopyright: Copyright ©  2022
LegalTrademarks: 
OriginalFilename: Set-up.exe
ProductName: TopazGigapixelAI-6.0.0.0
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

Midie.85542 also known as:

Bkav	W32.AIDetect.malware2
Lionic	Trojan.Win32.Agent.lqvp
tehtris	Generic.Malware
MicroWorld-eScan	Trojan.GenericKD.39981940
FireEye	Generic.mg.21f5bca087c0ec9b
ALYac	Gen:Variant.Midie.85542
Cylance	Unsafe
VIPRE	Trojan.GenericKD.39981940
Sangfor	Suspicious.Win32.Save.a
K7AntiVirus	Trojan ( 00588c581 )
Alibaba	Trojan:Win64/Generic.2e67f14c
K7GW	Trojan ( 00588c581 )
Cyren	W32/Trojan.JDYW-0976
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (high confidence)
ESET-NOD32	a variant of Win64/Agent.AVO
APEX	Malicious
Paloalto	generic.ml
BitDefender	Trojan.GenericKD.39981940
Avast	Win32:Trojan-gen
Ad-Aware	Trojan.GenericKD.39981940
Emsisoft	Trojan.GenericKD.39981940 (B)
McAfee-GW-Edition	BehavesLike.Win32.Generic.tc
Trapmine	malicious.high.ml.score
Sophos	Mal/Generic-S
SentinelOne	Static AI – Malicious PE
GData	Trojan.GenericKD.39981940
Webroot	W32.Malware.Gen
Avira	TR/Dropper.Gen2
Antiy-AVL	Trojan/Generic.ASMalwS.330C
Arcabit	Trojan.Generic.D2621374
Microsoft	Trojan:Win32/Mamson.A!ac
Cynet	Malicious (score: 99)
McAfee	Artemis!21F5BCA087C0
MAX	malware (ai score=89)
Malwarebytes	Malware.Heuristic.1003
TrendMicro-HouseCall	TROJ_GEN.R002H09DN22
Rising	Trojan.Agent!8.B1E (CLOUD)
Yandex	Trojan.GenAsa!LQmWrHldTi8
Ikarus	Trojan.Win64.Agent
MaxSecure	Trojan.Malware.182871816.susgen
Fortinet	W64/Agent.AVO!tr
BitDefenderTheta	Gen:NN.ZexaF.34786.@p0@amQs5Dg
AVG	Win32:Trojan-gen
CrowdStrike	win/malicious_confidence_100% (W)

How to remove Midie.85542?

Midie.85542 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X