What is "Mikey.115089"? – Adware Reports

The Mikey.115089 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Mikey.115089 virus can do?

Executable code extraction
Creates RWX memory
Unconventionial binary language: Chinese (Simplified)
Unconventionial language used in binary resources: Chinese (Simplified)
The binary likely contains encrypted or compressed data.
Uses Windows utilities for basic functionality
Likely installs a bootkit via raw harddisk modifications
Attempts to restart the guest VM
Checks for the presence of known windows from debuggers and forensic tools

Related domains:

z.whorecord.xyz

a.tomx.xyz

How to determine Mikey.115089?


File Info:
crc32: 8A76B641
md5: 49d24fc12ccba3d412757a18039fff16
name: upload_file
sha1: d7182be789f06d348bfe0aaff0ca2da7e1fedf2d
sha256: e812d2f7858c5971f4f6f56e7449eeaf682863dde440dd903ae93ddaaafa2002
sha512: b292edc57dc4cc870f65376eb8debecff0e2eb0118df803d4c55fbe60ca8557ccba664342d55ba391efdb07eaf0000ef4722b6544ae7e0dc13b73b67ff207b0e
ssdeep: 12288:cfjuCI5kFKR3xLpeJz8FXrAqQwsgx13gNsl2KZquoljauh0Nplns+Tg1:vl3kJz4XrpQwXx5gNsl2KQJZ++
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:
LegalCopyright: x4f5cx8005x7248x6743x6240x6709 x8bf7x5c0ax91cdx5e76x4f7fx7528x6b63x7248
FileVersion: 1.0.0.0
Comments: x672cx7a0bx5e8fx4f7fx7528x6613x8bedx8a00x7f16x5199(http://www.eyuyan.com)
ProductName: x6613x8bedx8a00x7a0bx5e8f
ProductVersion: 1.0.0.0
FileDescription: x9189x68a6
Translation: 0x0804 0x04b0

Mikey.115089 also known as:

Elastic	malicious (high confidence)
DrWeb	Trojan.MBRlock.300
MicroWorld-eScan	Gen:Variant.Mikey.115089
FireEye	Generic.mg.49d24fc12ccba3d4
McAfee	Packed-NU!49D24FC12CCB
Cylance	Unsafe
VIPRE	Trojan.Win32.Generic!BT
Sangfor	Malware
K7AntiVirus	Adware ( 004b942f1 )
BitDefender	Gen:Variant.Mikey.115089
K7GW	Adware ( 004b942f1 )
Cybereason	malicious.12ccba
Invincea	Mal/Generic-S
BitDefenderTheta	Gen:NN.ZexaF.34282.Qm0@aqgcPYib
Cyren	W32/Trojan.FOBA-8427
Symantec	ML.Attribute.HighConfidence
APEX	Malicious
Avast	Win32:Trojan-gen
Alibaba	Ransom:Win32/Foreign.c756683e
ViRobot	Trojan.Win32.Z.Graftor.695856
AegisLab	Trojan.Win32.Generic.kYXw
Ad-Aware	Gen:Variant.Mikey.115089
Sophos	Mal/Generic-S
Comodo	TrojWare.Win32.Agent.OSCF@5rs7jr
F-Secure	Trojan.TR/Crypt.ZPACK.Gen
TrendMicro	Trojan.Win32.WACATAC.USMANJ220
McAfee-GW-Edition	BehavesLike.Win32.Generic.jc
Emsisoft	Gen:Variant.Mikey.115089 (B)
SentinelOne	DFI – Malicious PE
GData	Win32.Application.PUPStudio.A
Jiangmin	Trojan.AddUser.h
MaxSecure	Dropper.Dinwod.frindll
Avira	TR/Crypt.ZPACK.Gen
MAX	malware (ai score=99)
Arcabit	Trojan.Mikey.D1C191
Microsoft	PUA:Win32/Vigua.A
Cynet	Malicious (score: 100)
Acronis	suspicious
VBA32	BScope.Trojan.Fuerboos
ALYac	Trojan.Ransom.MBRlock
Panda	W32/Sality.AA
ESET-NOD32	a variant of Win32/MBRlock.BA
TrendMicro-HouseCall	Trojan.Win32.WACATAC.USMANJ220
Rising	Ransom.MBRLocker!1.B2B2 (CLASSIC)
Yandex	Trojan.MBRlock!R+oFjnD0IhI
Ikarus	Trojan.Win32.MBRlock
Fortinet	W32/Generic.AP.10DA2E!tr
Webroot	W32.Trojan.Gen
AVG	Win32:Trojan-gen
Paloalto	generic.ml
CrowdStrike	win/malicious_confidence_90% (W)
Qihoo-360	Trojan.Generic

How to remove Mikey.115089?

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

What is “Mikey.115089”?