Malware

Midie.97167 information

Malware Removal

The Midie.97167 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Midie.97167 virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • Creates RWX memory
  • Dynamic (imported) function loading detected
  • Enumerates running processes
  • Expresses interest in specific running processes
  • CAPE extracted potentially suspicious content
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • Creates a copy of itself

How to determine Midie.97167?



File Info:

name: A757029CF0D35D06A789.mlw
path: /opt/CAPEv2/storage/binaries/1fbc6f85a92831a6e894e563fe1c32cfed196100837b1dfae8dddc1ead3f65b3
crc32: A8CE0716
md5: a757029cf0d35d06a7896518c5ba1a4d
sha1: 2b1abda95450b6d8c9736d15084359b5e8f6273e
sha256: 1fbc6f85a92831a6e894e563fe1c32cfed196100837b1dfae8dddc1ead3f65b3
sha512: 15a68d0cec0936ea64155d00694f20271fe76f64e7d07c227246f0fe7ea5ddfabf437a9b1227f9a1f827f13d26394be39702c2ddfdd3549e736292f3e00a5a5a
ssdeep: 6144:+EvQMXvQWEvQNOs9FvQrJ9x8vQWnAHvQ1xnPvQG0vQ/CEuEkhkjO4BgBc:c7WxNOs9m1FWz1JQcspWBgBc
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T161E4163CEA45DF1FE66100320B7DB29512143B24CEA0BEF7D1EB39B851BD8935A52B46
sha3_384: 35a699a16b4248bd5cd4a48cfee9d3cb8339febfbb855d3f19f808c8286a47fdcdbd561d0a01e5fd7030ded275e6b603
ep_bytes: 558bec6aff68a0b1460068ce97460064
timestamp: 2021-07-23 11:20:21


Version Info:

Comments: http://www.the-sz.com/
CompanyName: the sz development
FileDescription: Parkdale
FileVersion: 3.01
InternalName: Parkdale
LegalCopyright: Copyright © 2001-2020
LegalTrademarks: 
OriginalFilename: Parkdale.exe
PrivateBuild: 
ProductName: the sz development Parkdale
ProductVersion: 3.01
SpecialBuild: The SZ
Translation: 0x0407 0x04b0

Midie.97167 also known as:

BkavW32.YaccryminAP.Trojan
tehtrisGeneric.Malware
MicroWorld-eScanGen:Variant.Midie.97167
ALYacGen:Variant.Midie.97167
Sangfor[ARMADILLO V1.71]
K7AntiVirusTrojan ( 005821bc1 )
K7GWTrojan ( 005821bc1 )
Cybereasonmalicious.95450b
ArcabitTrojan.Midie.D17B8F
CyrenW32/Kryptik.ERN.gen!Eldorado
Elasticmalicious (high confidence)
ESET-NOD32a variant of Win32/Kryptik.HLQM
APEXMalicious
ClamAVWin.Packed.Zusy-9882005-0
KasperskyHEUR:Trojan.Win32.Staser.gen
BitDefenderGen:Variant.Midie.97167
AvastWin32:CrypterX-gen [Trj]
TencentTrojan.Win32.Staser.za
Ad-AwareGen:Variant.Midie.97167
SophosML/PE-A
F-SecureHeuristic.HEUR/AGEN.1244176
McAfee-GW-EditionBehavesLike.Win32.Dropper.jm
Trapminemalicious.high.ml.score
FireEyeGeneric.mg.a757029cf0d35d06
EmsisoftGen:Variant.Midie.97167 (B)
SentinelOneStatic AI – Malicious PE
AviraHEUR/AGEN.1244176
MicrosoftTrojan:Win32/Wacatac.B!ml
ZoneAlarmHEUR:Trojan.Win32.Staser.gen
GDataWin32.Trojan.PSE.3HRPE2
CynetMalicious (score: 100)
AhnLab-V3Trojan/Win.Generic.R433708
Acronissuspicious
McAfeeGenericRXPM-WI!A757029CF0D3
MAXmalware (ai score=81)
MalwarebytesAdware.DownloadAssistant
RisingTrojan.Kryptik!1.AA55 (CLASSIC)
IkarusTrojan.Win32.Crypt
MaxSecureTrojan.Malware.121218.susgen
FortinetW32/Kryptik.HATU!tr
BitDefenderThetaGen:NN.ZexaF.34712.Py0@aaWiX1Ai
AVGWin32:CrypterX-gen [Trj]
PandaTrj/Genetic.gen

How to remove Midie.97167?

Midie.97167 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment