Malware

Mikey.159105 (file analysis)

Malware Removal

The Mikey.159105 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Mikey.159105 virus can do?

  • Sample contains Overlay data
  • Presents an Authenticode digital signature
  • Unconventionial binary language: Chinese (Simplified)
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • The binary likely contains encrypted or compressed data.

How to determine Mikey.159105?



File Info:

name: C7AFC3779B83ADD6AE89.mlw
path: /opt/CAPEv2/storage/binaries/46785305c7676ef34f95af85c697663f6712c000b89ccc08d9a48fa5bee532e4
crc32: 0F3C741E
md5: c7afc3779b83add6ae89664015be8d32
sha1: 0f287fa48a0049e952927f2f69cb8989253abd16
sha256: 46785305c7676ef34f95af85c697663f6712c000b89ccc08d9a48fa5bee532e4
sha512: c95f1002a5282241a070ba9b34ed5efc0e1ffc61eb6d25941d5fe795b6c44fb0127f3ab6af909a15ac409378aca38ba3abf6a53c6f04d9a19954b708c3b7dcc6
ssdeep: 12288:Rn3xBbRZsUdNJHVyZx1em1pyzipXhN0iH40jGfwUNj:Rn3/RZsAR4ZxcopyQXnH40CIAj
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1EDD42353F38554EBF945EA3020E523B766B5DE972720DB9B27A4DC0F2E36260E61230D
sha3_384: 947d6cea65e91cc6629dd5670e98d19e887ee8b152e8162d5dea11c9de3c80656cb66b83a2dacc712ad576fe8d8e6328
ep_bytes: 558bec6aff68b0c84000680a2e400064
timestamp: 2012-03-28 07:02:17


Version Info:

Comments: 
CompanyName: Tencent Inc.
FileDescription: TencentMailActiveXInstall
FileVersion: 1.0.0.6
InternalName: TencentMailActiveXInstall
LegalCopyright: Copyright (C) 2012 TENCENT Inc. All Rights Reserved
LegalTrademarks: 
OriginalFilename: TencentMailActiveXInstall.EXE
PrivateBuild: 
ProductName: TencentMailActiveXInstall
ProductVersion: 1.0.0.6
SpecialBuild: 
Translation: 0x0804 0x04b0

Mikey.159105 also known as:

LionicTrojan.Win32.QQPass.mDxy
MicroWorld-eScanGen:Variant.Mikey.159105
CAT-QuickHealTrojan.Inject.20181
BitDefenderGen:Variant.Mikey.159105
CrowdStrikewin/grayware_confidence_60% (D)
CynetMalicious (score: 99)
AvastWin32:Malware-gen
F-SecureTrojan.TR/Injector.wzzkh
ZillyaTrojan.Inject.Win32.344240
JiangminTrojan.Inject.clfd
AviraTR/Injector.wzzkh
MAXmalware (ai score=88)
Antiy-AVLTrojan/Win32.Wacatac
TrendMicro-HouseCallTROJ_GEN.R002H0CLN23
FortinetW32/PossibleThreat
AVGWin32:Malware-gen
DeepInstinctMALICIOUS

How to remove Mikey.159105?

Mikey.159105 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment