Ulise.101407 information

The Ulise.101407 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Ulise.101407 virus can do?

Executable code extraction
Creates RWX memory
Unconventionial binary language: Chinese (Simplified)
Unconventionial language used in binary resources: Chinese (Simplified)
The binary likely contains encrypted or compressed data.
Steals private information from local Internet browsers
Attempts to modify proxy settings
Anomalous binary characteristics

Related domains:

z.whorecord.xyz

installsilver.top

a.tomx.xyz

How to determine Ulise.101407?


File Info:
crc32: 2B108458
md5: 21c7eade85812910fda111f9e1fec83b
name: 001.exe
sha1: 2de6b1eec6d94d73ebddb375b6c6c67b2446cdf5
sha256: da600256e16fc62963cfade0462dc699de104283654168675bf9306bc7685fb7
sha512: cdfcda7cf881559eba90a51dc2bc2960406903c40c83b60df77fecd78bd0c4a6cce50c12e3d69c792f395c8e4911d900ce8b3f1c1aab106b5040ae91e870124d
ssdeep: 49152:cjG30UP3pzNOWgqg0ieahDNFvzKiYDhyYij27E0rEB08:f30cDOWgqgQyJFvBYDhy5orEH
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:
LegalCopyright: CopyRight (C) 2019
InternalName: ByteDownload
FileVersion: 1, 0, 0, 2
CompanyName: 003
ProductName: ByteDownload Application
ProductVersion: 1, 0, 0, 2
FileDescription: ByteDownload Microsoft x57fax7840x7c7bx5e94x7528x7a0bx5e8f
OriginalFilename: 003.EXE
Translation: 0x0804 0x04b0

Ulise.101407 also known as:

Bkav	HW32.Packed.
MicroWorld-eScan	Gen:Variant.Ulise.101407
FireEye	Generic.mg.21c7eade85812910
ALYac	Gen:Variant.Ulise.101407
Cylance	Unsafe
VIPRE	Trojan.Win32.Generic!BT
AegisLab	Hacktool.Win32.Generic.x!c
K7AntiVirus	Trojan ( 005239691 )
BitDefender	Gen:Variant.Ulise.101407
K7GW	Trojan ( 005239691 )
Cybereason	malicious.ec6d94
TrendMicro	TROJ_GEN.R002C0PBP20
BitDefenderTheta	Gen:NN.ZexaF.34096.Mw1@auyjfToj
Cyren	W32/Trojan.ZDMO-2486
Symantec	Trojan.Gen.MBT
APEX	Malicious
Avast	Win32:TrojanX-gen [Trj]
ClamAV	Win.Malware.Noobyprotect-6622929-0
GData	Win32.Riskware.NoobyProtect.B
Kaspersky	HEUR:Packed.Win32.Generic
Alibaba	Packed:Win32/NoobyProtect.8a6e9d9c
NANO-Antivirus	Virus.Win32.Gen.ccmw
Rising	Trojan.Occamy!8.F1CD (CLOUD)
Ad-Aware	Gen:Variant.Ulise.101407
Sophos	Mal/Generic-S
Comodo	Malware@#f9d737k1kjf6
F-Secure	Heuristic.HEUR/AGEN.1010504
Invincea	heuristic
McAfee-GW-Edition	BehavesLike.Win32.Generic.vc
Trapmine	malicious.high.ml.score
Emsisoft	Gen:Variant.Ulise.101407 (B)
Ikarus	PUA.NoobyProtect
Jiangmin	Packed.Generic.abt
MaxSecure	Trojan.Malware.2329303.susgen
Avira	HEUR/AGEN.1010504
Antiy-AVL	Trojan/Win32.Wacatac
Endgame	malicious (high confidence)
ZoneAlarm	HEUR:Packed.Win32.Generic
Microsoft	Trojan:Win32/Occamy.C
Acronis	suspicious
McAfee	Packed-LF!21C7EADE8581
MAX	malware (ai score=86)
VBA32	Trojan.Wacatac
Malwarebytes	Trojan.Injector
Panda	Trj/CI.A
ESET-NOD32	a variant of Win32/Packed.NoobyProtect.G suspicious
TrendMicro-HouseCall	TROJ_GEN.R002C0PBP20
SentinelOne	DFI – Malicious PE
eGambit	Unsafe.AI_Score_99%
Fortinet	W32/Injector.FKM!tr
Webroot	W32.Trojan.Gen
AVG	Win32:TrojanX-gen [Trj]
Paloalto	generic.ml
CrowdStrike	win/malicious_confidence_100% (W)
Qihoo-360	Win32/Trojan.3bf

How to remove Ulise.101407?

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.