Malware

What is “Midie.90536 (B)”?

Malware Removal

The Midie.90536 (B) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Midie.90536 (B) virus can do?

  • Attempts to connect to a dead IP:Port (9 unique times)
  • Reads data out of its own binary image
  • Drops a binary and executes it
  • Performs some HTTP requests
  • Unconventionial language used in binary resources: Russian
  • Attempts to repeatedly call a single API many times in order to delay analysis time
  • Steals private information from local Internet browsers
  • Anomalous binary characteristics
  • Clears web history

Related domains:

www.browzar.com
ajax.googleapis.com
pagead2.googlesyndication.com
ocsp.pki.goog
www.google-analytics.com

How to determine Midie.90536 (B)?



File Info:

crc32: 2980A841
md5: 43cd8230b8e5c132362d91f30341dd26
name: 43CD8230B8E5C132362D91F30341DD26.mlw
sha1: 11568e572601a21530405ae99c300733fcd7b9b0
sha256: 5a57385f2f478ef411b2a180b65ad408d7133149d9584ccfe3954813db79729e
sha512: 5a242e11c53c7f0f85a87acf0da5b4541dd84e7146b2d74a014a4bdec52450e79cbb1974f40b254890c628257af1ea4577466aa1f1ce20b1038fedd585b20324
ssdeep: 12288:1XmwRo+mv8QD4+0N46dNNQ57kekvu5q+14EgY7t3k+Lo494eSkZM0mlrizzYB5:1X48QE+UTEwvu5qb+3k494eSkZM0mlrJ
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright: Browzar                                                                                             
FileDescription: Browzar 2.0.1 Installation                                  
FileVersion: 2.0.1               
Comments: 
CompanyName: Browzar                                                     
Translation: 0x0409 0x04e4

Midie.90536 (B) also known as:

BkavW32.AIDetect.malware2
DrWebTrojan.PWS.Stealer.30497
CynetMalicious (score: 100)
ALYacGen:Variant.Midie.90536
CylanceUnsafe
CrowdStrikewin/malicious_confidence_70% (W)
K7GWTrojan ( 0057d3ef1 )
Cybereasonmalicious.72601a
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/GenCBL.ALZ
APEXMalicious
AvastWin32:DangerousSig [Trj]
ClamAVWin.Malware.Midie-9871449-0
KasperskyUDS:Trojan-PSW.MSIL.Reline.gen
BitDefenderGen:Variant.Midie.90536
MicroWorld-eScanGen:Variant.Midie.90536
Ad-AwareGen:Variant.Midie.90536
SophosGeneric ML PUA (PUA)
McAfee-GW-EditionBehavesLike.Win32.BadFile.jc
FireEyeGeneric.mg.43cd8230b8e5c132
EmsisoftGen:Variant.Midie.90536 (B)
eGambitUnsafe.AI_Score_99%
MicrosoftTrojan:MSIL/AgentTesla.STA
ArcabitTrojan.Midie.D161A8
GDataGen:Variant.Midie.90536
AhnLab-V3Trojan/Win.Generic.R425221
McAfeeArtemis!43CD8230B8E5
MAXmalware (ai score=89)
MalwarebytesTrojan.MalPack
MaxSecureTrojan-Ransom.Win32.Crypmod.zfq
FortinetW32/PossibleThreat
AVGWin32:DangerousSig [Trj]

How to remove Midie.90536 (B)?

Midie.90536 (B) removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment