Ulise.142384 removal guide

The Ulise.142384 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Ulise.142384 virus can do?

The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid
Anomalous binary characteristics

How to determine Ulise.142384?


File Info:
name: A815A20DF494692DB209.mlw
path: /opt/CAPEv2/storage/binaries/2c2a750c686e30d91ccd73f9d4217687d48d547312e0008bb9f58ce6ca596f47
crc32: 9848E026
md5: a815a20df494692db2091925e81a785f
sha1: 4a500054e7d34b6965727c0c17e40bd94de7b7c8
sha256: 2c2a750c686e30d91ccd73f9d4217687d48d547312e0008bb9f58ce6ca596f47
sha512: 50b84ecf11e0978bde617a654b81fbec037031b2d01477fa5c76fceda87a5c35e385701a0365d80caa7d8786d04b7008ac97c0d85ec522e7fb52329456876366
ssdeep: 49152:sSHeHweOD39YzETC+R2zNsnKvkTgXuquveY+W2o8oT3ezMrl9cekcHhXh9HJUiWx:s0e3Am+RYNAKvkTgXuquveY+W2o8oT3A
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1C5A5170266E48472E5A6193158A6A61D6739BC51DB138FCF23407ECCBFF27D0AA31736
sha3_384: d15608cdd55958178391fa6d4b83ed4e43d57eaf7369952e6b1519fc4c5bc9881aad358a804cdc05d255e2fcaf738c89
ep_bytes: 6a2868b0170030e88103000033ff57ff
timestamp: 2007-03-13 22:21:26

Version Info:
CompanyName: Microsoft Corporation
FileDescription: Watson Subscriber for SENS Network Notifications
FileVersion: 11.0.8160
InternalName: dwtrig20.exe
LegalCopyright: Copyright © 2002-2003 Microsoft Corporation.  All rights reserved.
LegalTrademarks1: Microsoft® is a registered trademark of Microsoft Corporation.
LegalTrademarks2: Windows® is a registered trademark of Microsoft Corporation.
OriginalFilename: dwtrig20.exe
ProductName: Watson Subscriber for SENS Network Notifications
ProductVersion: 11.0.8160
Translation: 0x0000 0x04e4

Ulise.142384 also known as:

Bkav	W32.AIDetect.malware1
Elastic	malicious (high confidence)
DrWeb	Win32.HLLW.Autoruner.547
MicroWorld-eScan	Gen:Variant.Ulise.142384
FireEye	Gen:Variant.Ulise.142384
ALYac	Gen:Variant.Ulise.142384
Cylance	Unsafe
BitDefender	Gen:Variant.Ulise.142384
Cybereason	malicious.df4946
Arcabit	Trojan.Ulise.D22C30
BitDefenderTheta	AI:Packer.DCFA27A81E
Cyren	W32/Ursu.DK.gen!Eldorado
Symantec	ML.Attribute.HighConfidence
APEX	Malicious
ClamAV	Win.Malware.Genpack-9877676-0
Rising	Trojan.Kryptik!1.B239 (CLASSIC)
Ad-Aware	Gen:Variant.Ulise.142384
Sophos	ML/PE-A
McAfee-GW-Edition	BehavesLike.Win32.Trojan.vm
Emsisoft	Gen:Variant.Ulise.142384 (B)
SentinelOne	Static AI – Malicious PE
MAX	malware (ai score=88)
Microsoft	Trojan:Win32/Sabsik.FL.B!ml
GData	Gen:Variant.Ulise.142384
Cynet	Malicious (score: 100)
McAfee	Artemis!A815A20DF494
VBA32	Trojan.Scar
Ikarus	Trojan.SuspectCRC
MaxSecure	Trojan.Malware.121218.susgen
AVG	Win32:TrojanX-gen [Trj]
Avast	Win32:TrojanX-gen [Trj]
CrowdStrike	win/malicious_confidence_80% (D)

How to remove Ulise.142384?

Ulise.142384 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X