Malware

What is “Mikey.110126 (B)”?

Malware Removal

The Mikey.110126 (B) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware - Review 2020

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
6-day free trial available.

What Mikey.110126 (B) virus can do?

  • Attempts to connect to a dead IP:Port (1 unique times)
  • Presents an Authenticode digital signature
  • Unconventionial binary language: Chinese (Simplified)
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • The binary likely contains encrypted or compressed data.
  • Anomalous binary characteristics

Related domains:

z.whorecord.xyz
www.zuhaowan.com
a.tomx.xyz

How to determine Mikey.110126 (B)?


File Info:

crc32: 6EC07FEA
md5: 70c726bb1949575f46a6eb0453dce42e
name: zhw_5.4.417.1_online.exe
sha1: 17bb883dcdbdf70de2044bc98a73727201e2bc19
sha256: a01906d979100c69aa0fb9add389f3d320f9a3712f909ba9da547ab80f77ce3b
sha512: 13d051aab0d953515a9e04c9c32e87cd1027682844bb3d935579efcc32204a550b7334adf2a0c1505bc6771bc9dc469021223e43c8c93156d90e902a900277c0
ssdeep: 24576:MB4g1KC0cdTTFWA+FtYJNrw+hDfZcoxOOjg1i0C0:MSFATToA+h6hVPP0C0
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:

LegalCopyright: Copyright xa9 daofeng. All Rights Reserved.
InternalName: loader
FileVersion: 5, 4, 414, 2
CompanyName: x5200x950bx7f51x7edc
Comments:
ProductName: zuhaowan
ProductVersion: 5, 4, 414, 2
FileDescription: x79dfx53f7x73a9x63a8x5e7fx5728x7ebfx5b89x88c5x5305
OriginalFilename: loader.exe
Translation: 0x0804 0x04b0

Mikey.110126 (B) also known as:

BkavW32.AIDetectVM.malware2
MicroWorld-eScanGen:Variant.Mikey.110126
Qihoo-360Generic/Trojan.3c9
McAfeeArtemis!70C726BB1949
CylanceUnsafe
AegisLabTrojan.Win32.Mikey.4!c
K7AntiVirusRiskware ( 0040eff71 )
BitDefenderGen:Variant.Mikey.110126
K7GWRiskware ( 0040eff71 )
Cybereasonmalicious.dcdbdf
SymantecML.Attribute.HighConfidence
APEXMalicious
AvastWin32:TrojanX-gen [Trj]
GDataGen:Variant.Mikey.110126
RisingPUA.CoinMiner!8.4639 (CLOUD)
Ad-AwareGen:Variant.Mikey.110126
EmsisoftGen:Variant.Mikey.110126 (B)
McAfee-GW-EditionBehavesLike.Win32.Spyware.tc
CyrenW32/Trojan.SSGE-4684
WebrootW32.Trojan.Gen
MAXmalware (ai score=87)
Antiy-AVLGrayWare/Win32.CoinMiner
ArcabitTrojan.Mikey.D1AE2E
MicrosoftPUA:Win32/CoinMiner
BitDefenderThetaGen:NN.ZexaF.34108.lnMfaSDnX@gj
ALYacGen:Variant.Mikey.110126
VBA32BScope.Trojan.Wofith
TrendMicro-HouseCallTROJ_GEN.R002H09EB20
SentinelOneDFI – Malicious PE
AVGWin32:TrojanX-gen [Trj]
Paloaltogeneric.ml
CrowdStrikewin/malicious_confidence_60% (W)
MaxSecureTrojan.Malware.76926142.susgen

How to remove Mikey.110126 (B)?

Mikey.110126 (B) removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment