Malware

Midie.97167 (B) removal guide

Malware Removal

The Midie.97167 (B) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Midie.97167 (B) virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • A file with an unusual extension was attempted to be loaded as a DLL.
  • Creates RWX memory
  • Terminates another process
  • Dynamic (imported) function loading detected
  • Enumerates running processes
  • Expresses interest in specific running processes
  • CAPE extracted potentially suspicious content
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • Creates a copy of itself

How to determine Midie.97167 (B)?



File Info:

name: 6E14939F5A0FC351A84A.mlw
path: /opt/CAPEv2/storage/binaries/b286ee5afbf8359e91502beed51423a4b3592d620c10dbaa9c0f11c1a4222073
crc32: 3B3E209B
md5: 6e14939f5a0fc351a84a6962835d4be9
sha1: 1eb48b246d8ebe0d7a5bb2ab1363f74846325491
sha256: b286ee5afbf8359e91502beed51423a4b3592d620c10dbaa9c0f11c1a4222073
sha512: b94df84badf12c392dc615f24e485d6a00616111b32a1399f79e881e721f88e7c2cbb05fe5a916fa56714d9d2fea6a932258615464c961fa2b6476ed331b91ec
ssdeep: 12288:cMQxcifmqFmo86GbFWFICEklCRZLmDBgBc:mXhFsagLmR
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T13DE4163CEA45DF1FE66100320B7DB29512143B34CDA0BEF7D1EB3AB851BD8935A52A46
sha3_384: 055e67e001c5b141fc5e3759bb33ba489745473e220e8212575208500070633748dabe8925fd2aa9aa78dcabc0357175
ep_bytes: 558bec6aff68a0b1460068ce97460064
timestamp: 2021-07-23 07:24:30


Version Info:

Comments: http://www.the-sz.com/
CompanyName: the sz development
FileDescription: Parkdale
FileVersion: 3.01
InternalName: Parkdale
LegalCopyright: Copyright © 2001-2020
LegalTrademarks: 
OriginalFilename: Parkdale.exe
PrivateBuild: 
ProductName: the sz development Parkdale
ProductVersion: 3.01
SpecialBuild: The SZ
Translation: 0x0407 0x04b0

Midie.97167 (B) also known as:

BkavW32.AIDetect.malware1
LionicTrojan.Win32.Staser.4!c
tehtrisGeneric.Malware
MicroWorld-eScanGen:Variant.Midie.97167
FireEyeGeneric.mg.6e14939f5a0fc351
McAfeeGenericRXPM-WI!6E14939F5A0F
Sangfor[ARMADILLO V1.71]
K7AntiVirusTrojan ( 005821bc1 )
K7GWTrojan ( 005821bc1 )
Cybereasonmalicious.46d8eb
BitDefenderThetaGen:NN.ZexaF.34806.Py0@a4iuFgyi
CyrenW32/Kryptik.ERN.gen!Eldorado
SymantecML.Attribute.HighConfidence
Elasticmalicious (high confidence)
ESET-NOD32a variant of Win32/Kryptik.HLQM
ClamAVWin.Packed.Zusy-9882005-0
KasperskyHEUR:Trojan.Win32.Staser.gen
BitDefenderGen:Variant.Midie.97167
AvastWin32:CrypterX-gen [Trj]
TencentTrojan.Win32.Staser.za
Ad-AwareGen:Variant.Midie.97167
SophosMal/Generic-S
VIPREGen:Variant.Midie.97167
McAfee-GW-EditionBehavesLike.Win32.Autorun.jm
SentinelOneStatic AI – Malicious PE
Trapminemalicious.high.ml.score
EmsisoftGen:Variant.Midie.97167 (B)
APEXMalicious
AviraHEUR/AGEN.1244176
Antiy-AVLTrojan/Generic.ASMalwS.2D6B
MicrosoftTrojan:Win32/Wacatac.B!ml
GDataWin32.Trojan.PSE.1IAKRUN
CynetMalicious (score: 100)
AhnLab-V3Trojan/Win.Generic.R433708
Acronissuspicious
ALYacGen:Variant.Midie.97167
MAXmalware (ai score=87)
MalwarebytesAdware.DownloadAssistant
RisingTrojan.Kryptik!1.AA55 (CLASSIC)
IkarusTrojan.Win32.Crypt
MaxSecureTrojan.Malware.73802172.susgen
FortinetW32/Kryptik.HATU!tr
AVGWin32:CrypterX-gen [Trj]
PandaTrj/GdSda.A
CrowdStrikewin/malicious_confidence_100% (W)

How to remove Midie.97167 (B)?

Midie.97167 (B) removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment