Malware

Mikey.115803 removal instruction

Malware Removal

The Mikey.115803 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Mikey.115803 virus can do?

  • Unconventionial binary language: Chinese (Simplified)
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • Authenticode signature is invalid
  • Installs itself for autorun at Windows startup
  • Creates a copy of itself
  • Yara detections observed in process dumps, payloads or dropped files

How to determine Mikey.115803?



File Info:

name: DEC02065F9ABA5C4E00A.mlw
path: /opt/CAPEv2/storage/binaries/48624221fd9aec993e9d6fc55cbf40912d38987f22765ee84efe388b2fd5a685
crc32: 1F1F7E8D
md5: dec02065f9aba5c4e00a1d876da1f180
sha1: 66483d296939493b60d4cce48e46a270be94f116
sha256: 48624221fd9aec993e9d6fc55cbf40912d38987f22765ee84efe388b2fd5a685
sha512: 354ad983d09016dc7d506e1ed60dc3541a3bd07fd55860f14704449707083d377f0881f83be60168572ebfa58b696aa6fb550ec7d4ea9e462a93788fe7f9f4c2
ssdeep: 1536:89xHF+TJusjFegSa90Jpd5tc7QKf+J0UI7vFJI4I:89xHKjY8wdjIQM+J0UI7tJI4I
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1C7934A01F7854AFEF974443174EE6B7A9632BC59C6095FA7B348EA1A1833044BB523CA
sha3_384: 13150707309b2eb1fa3ff8a4956ddd7ea36364ba103ef46cba02a277d8305db3a0e59ab94f5c688b8893381a6288f4b6
ep_bytes: 558bec6aff6860ff4000689ce1400064
timestamp: 2014-01-29 07:40:57


Version Info:

Comments: 
CompanyName: VMware, Inc.
FileDescription: VMware Workstation
FileVersion: 10.0.0 build-1295980
InternalName: vmui
LegalCopyright: Copyright ? 1998-2013 VMware, Inc.
LegalTrademarks: 
OriginalFilename: vmware.exe
PrivateBuild: 
ProductName: VMware Workstation
ProductVersion: 10.0.0 build-1295980
SpecialBuild: 
Translation: 0x0804 0x04b0

Mikey.115803 also known as:

LionicTrojan.Win32.Magania.mEdv
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Mikey.115803
ClamAVWin.Malware.Farfli-7001713-0
FireEyeGeneric.mg.dec02065f9aba5c4
CAT-QuickHealTrojanAPT.LecnaCShip.MUE.Z4
SkyhighBehavesLike.Win32.PUPXAC.mm
ALYacGen:Variant.Mikey.115803
Cylanceunsafe
SangforSuspicious.Win32.Save.ins
CrowdStrikewin/malicious_confidence_90% (W)
AlibabaTrojan:Win32/Farfli.d12e39b5
K7GWTrojan ( 004bc66b1 )
K7AntiVirusTrojan ( 004bc66b1 )
BitDefenderThetaAI:Packer.61A5F8401F
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/Fusing.BB
APEXMalicious
CynetMalicious (score: 100)
KasperskyHEUR:Trojan.Win32.Generic
BitDefenderGen:Variant.Mikey.115803
NANO-AntivirusTrojan.Win32.TrjGen.ctunsg
AvastWin32:Farfli-AS [Trj]
TencentWin32.Trojan.Generic.Cnhl
SophosMal/Generic-S
F-SecureHeuristic.HEUR/AGEN.1344913
DrWebTrojan.Siggen6.6581
ZillyaTrojan.Farfli.Win32.16536
Trapminesuspicious.low.ml.score
EmsisoftGen:Variant.Mikey.115803 (B)
IkarusBackdoor.Win32.Inject
GDataGen:Variant.Mikey.115803
VaristW32/S-e254ac3e!Eldorado
AviraHEUR/AGEN.1344913
Antiy-AVLTrojan/Win32.AGeneric
Kingsoftmalware.kb.a.1000
XcitiumTrojWare.Win32.Farfli.ARX@58slpu
ArcabitTrojan.Mikey.D1C45B
ZoneAlarmHEUR:Trojan.Win32.Generic
MicrosoftTrojan:Win32/Wacatac.B!ml
GoogleDetected
McAfeeGenericRXET-VQ!DEC02065F9AB
MAXmalware (ai score=100)
VBA32BScope.Trojan.Agent
MalwarebytesGeneric.Malware/Suspicious
PandaGeneric Malware
RisingMalware.Undefined!8.C (TFE:5:PUnanT11AJJ)
YandexTrojan.Farfli!pF7i2nja2LY
FortinetW32/Inject.GEKQ!tr
AVGWin32:Farfli-AS [Trj]
DeepInstinctMALICIOUS

How to remove Mikey.115803?

Mikey.115803 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment