Ransom

Ransom.Mikey.4 (B) removal instruction

Malware Removal

The Ransom.Mikey.4 (B) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Ransom.Mikey.4 (B) virus can do?

  • Attempts to connect to a dead IP:Port (3 unique times)
  • At least one IP Address, Domain, or File Name was found in a crypto call
  • Performs some HTTP requests
  • Unconventionial binary language: Chinese (Simplified)
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX
  • Steals private information from local Internet browsers

Related domains:

z.whorecord.xyz
a.tomx.xyz
iplogger.org

How to determine Ransom.Mikey.4 (B)?



File Info:

crc32: 2340757B
md5: 29d2a81ebac9ade37adc55f142f3a02d
name: 29D2A81EBAC9ADE37ADC55F142F3A02D.mlw
sha1: 77e51418cefdc52ef55523d0e32c0169265aa753
sha256: b2180411e6e9e303b580a6cce52110b552f4772e8722dbd38ba75fcb91ba7876
sha512: 1246e38189da05c28bccde69354cd685f223ba74afc24d981495afb00dbf99144f31ff9112b5f1a45cda4aada34ad4446af59112988bb544cece6340323a5a00
ssdeep: 24576:PZdWx1Sur+FTg0HY+3QUWtGrFCVL5udKNMeIvbL:P+x1Su+TH9QUWtHxAdKNMHv
type: PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed


Version Info:

FileVersion: 1.0.0.1
ProductVersion: 1.0.0.1
Translation: 0x0804 0x04b0

Ransom.Mikey.4 (B) also known as:

BkavW32.AIDetect.malware1
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Ransom.Mikey.4
CylanceUnsafe
SangforTrojan.Win32.Save.a
BitDefenderGen:Variant.Ransom.Mikey.4
ArcabitTrojan.Ransom.Mikey.4
ESET-NOD32a variant of Win32/PSW.Agent.OJK
Ad-AwareGen:Variant.Ransom.Mikey.4
EmsisoftGen:Variant.Ransom.Mikey.4 (B)
SentinelOneStatic AI – Suspicious PE
FireEyeGeneric.mg.29d2a81ebac9ade3
IkarusTrojan-PSW.Agent
MicrosoftTrojan:Win32/Wacatac.DB!ml
GDataGen:Variant.Ransom.Mikey.4
CynetMalicious (score: 100)
ALYacGen:Variant.Ransom.Mikey.4
MAXmalware (ai score=84)
MalwarebytesMalware.Heuristic.1003
APEXMalicious
eGambitUnsafe.AI_Score_99%
FortinetW32/Agent.OJK!tr
Cybereasonmalicious.ebac9a

How to remove Ransom.Mikey.4 (B)?

Ransom.Mikey.4 (B) removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment