Malware

Ulise.131488 removal

Malware Removal

The Ulise.131488 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Ulise.131488 virus can do?

  • Executable code extraction
  • Injection (inter-process)
  • Injection (Process Hollowing)
  • Creates RWX memory
  • Reads data out of its own binary image
  • Drops a binary and executes it
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • The binary likely contains encrypted or compressed data.
  • Executed a process and injected code into it, probably while unpacking
  • Attempts to remove evidence of file being downloaded from the Internet
  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

Related domains:

z.whorecord.xyz
a.tomx.xyz

How to determine Ulise.131488?



File Info:

crc32: 12401155
md5: 11664fcf83e9c853a96148cbe2b73dd5
name: 11664FCF83E9C853A96148CBE2B73DD5.mlw
sha1: a6878bbcdcf8aae3dc06f94cf35a443b81adcc24
sha256: 1086db437d787b90f407fa50585dadd71f59a9ab6cdf267ef0664280bef5f60d
sha512: bb28e351ef6048850187c1b40f55f443895d580804620ea70e5c7377ffafa75583a26e4ed7dc081e270d82e525a374aa805fca3e032aedbcaf7887e33ad0c1e0
ssdeep: 49152:reK8qtMgMu7seBMQB8TjFJspDLoVMgdkLN:reK3+gfzFSFJspDLOMgdW
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

0: [No Data]

Ulise.131488 also known as:

BkavW32.AIDetectVM.malware1
Elasticmalicious (high confidence)
DrWebTrojan.Inject2.58694
MicroWorld-eScanGen:Variant.Ulise.131488
FireEyeGeneric.mg.11664fcf83e9c853
CAT-QuickHealTrojanToga.MUE.R9
Qihoo-360Win32/Virus.DayeWang.A
ALYacGen:Variant.Ulise.131488
CylanceUnsafe
VIPRETrojan.Win32.Generic!BT
SangforMalware
K7AntiVirusTrojan ( 004abd861 )
BitDefenderGen:Variant.Ulise.131488
K7GWTrojan ( 004abd861 )
Cybereasonmalicious.f83e9c
BitDefenderThetaGen:NN.ZexaF.34804.QzZ@aqX28Vbl
CyrenW32/S-24f4c04b!Eldorado
SymantecW32.Faedevour!inf
APEXMalicious
Paloaltogeneric.ml
ClamAVWin.Malware.Bzub-6727003-0
KasperskyBackdoor.Win32.Androm.qxe
AlibabaTrojan:Win32/Injector.27e
NANO-AntivirusTrojan.Win32.Androm.ctymsi
ViRobotWin32.Daws.B
RisingDropper.Agent!1.AF79 (CLASSIC)
Ad-AwareGen:Variant.Ulise.131488
SophosMal/Generic-S
ComodoTrojWare.Win32.Toga.PYF@7g9q1h
F-SecureTrojan.TR/Drop.Daws.awfy
BaiduWin32.Trojan-Dropper.Injector.f
ZillyaBackdoor.Androm.Win32.6167
TrendMicroTROJ_GEN.R002C0OAP21
McAfee-GW-EditionBehavesLike.Win32.PWSZbot.tc
EmsisoftGen:Variant.Ulise.131488 (B)
SentinelOneStatic AI – Malicious PE – Downloader
JiangminTrojanDropper.Daws.byh
AviraTR/Drop.Daws.awfy
MAXmalware (ai score=85)
Antiy-AVLTrojan[Backdoor]/Win32.Androm.qxe
MicrosoftTrojan:Win32/Toga!rfn
ArcabitTrojan.Ulise.D201A0
ZoneAlarmBackdoor.Win32.Androm.qxe
GDataGen:Variant.Ulise.131488
CynetMalicious (score: 100)
Acronissuspicious
McAfeePWSZbot-FIB!11664FCF83E9
VBA32Backdoor.Androm
MalwarebytesGeneric.Trojan.Injector.DDS
PandaTrj/GdSda.A
ESET-NOD32a variant of Win32/TrojanDropper.Agent.PYF
TrendMicro-HouseCallTROJ_GEN.R002C0OAP21
TencentBackdoor.Win32.Androm.qxe
YandexTrojan.GenAsa!zFH4sqyAwHU
IkarusBackdoor.Win32.Androm
eGambitUnsafe.AI_Score_99%
FortinetW32/Injector.AQV!tr
AVGWin32:Zbot-THZ [Trj]
AvastWin32:Zbot-THZ [Trj]
CrowdStrikewin/malicious_confidence_100% (D)
MaxSecureTrojan.Malware.121218.susgen

How to remove Ulise.131488?

Ulise.131488 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment