Malware

What is “ML/PE-A + Mal/Redos-F”?

Malware Removal

The ML/PE-A + Mal/Redos-F is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What ML/PE-A + Mal/Redos-F virus can do?

  • Unconventionial binary language: Chinese (Simplified)
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX

How to determine ML/PE-A + Mal/Redos-F?



File Info:

crc32: 35D9DF28
md5: 169c3865474e9421a683bcceae8da804
name: 169C3865474E9421A683BCCEAE8DA804.mlw
sha1: 8761ae8c6c05b0567e5fa38da03777473c095a3c
sha256: beeecb07fbc34ef3dcc65b2951d2b93da1acff1c3dfa7581dbd1fd01675016dd
sha512: 59bfeaa5ae924cf4913ab56abe7e4b15f06fe2ab99a8e6551cb3ec78c88b9429455d8a574b7006edfb2f8da87467d42eb71fda6cc0b1290848c489edac606006
ssdeep: 192:O676blqhy/R4fj1uknmM4aTiYYVUSGCObPn19d1R1Q1D1Q180ZGoonTYf68qiayc:OiglJy1uUATYf687ayc
type: PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed


Version Info:

LegalCopyright: AntiVir? is a registered trademark of Avira GmbH, Germany
InternalName: AntiVir/Win32
FileVersion: 0, 0, 0, 0
CompanyName: Avira GmbH
PrivateBuild: 
LegalTrademarks: 
Comments: 
ProductName: AVVDF
SpecialBuild: 
ProductVersion: 1, 0, 0, 1001
FileDescription: AntiVir Engine Module for Windows
OriginalFilename: 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Translation: 0x0804 0x04b0

ML/PE-A + Mal/Redos-F also known as:

BkavW32.AIDetect.malware1
LionicTrojan.Multi.Generic.4!c
Elasticmalicious (high confidence)
CynetMalicious (score: 99)
CylanceUnsafe
SangforSuspicious.Win32.Save.a
CrowdStrikewin/malicious_confidence_60% (D)
AlibabaTrojanDropper:Win32/Redos.618b3a1a
Cybereasonmalicious.c6c05b
CyrenW32/FakeAlert.LE.gen!Eldorado
SymantecML.Attribute.HighConfidence
APEXMalicious
AvastWin32:Malware-gen
ClamAVWin.Malware.Genpack-9841556-0
KasperskyUDS:DangerousObject.Multi.Generic
TencentWin32.Trojan.Hpgn.Dyqu
SophosML/PE-A + Mal/Redos-F
ComodoMalware@#3r7g6mosexn5u
BitDefenderThetaGen:NN.ZexaF.34236.amLfaaYjY5db
VIPRETrojan.Win32.Generic.pak!cobra
TrendMicroMal_HPGN-3
McAfee-GW-EditionBehavesLike.Win32.BadFile.lm
FireEyeGeneric.mg.169c3865474e9421
SentinelOneStatic AI – Malicious PE
WebrootW32.Malware.Gen
AviraTR/Crypt.ULPM.Gen
eGambitGeneric.Malware
MicrosoftTrojan:Win32/Wacatac.B!ml
McAfeeArtemis!169C3865474E
MAXmalware (ai score=96)
TrendMicro-HouseCallMal_HPGN-3
YandexTrojan.ULPM!GqimowFmSUQ
IkarusTrojan-Dropper.Win32.Hupigon
MaxSecureTrojan.Malware.300983.susgen
AVGWin32:Malware-gen

How to remove ML/PE-A + Mal/Redos-F?

ML/PE-A + Mal/Redos-F removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment