Ulise.326984 malicious file

The Ulise.326984 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Ulise.326984 virus can do?

The binary contains an unknown PE section name indicative of packing
The binary likely contains encrypted or compressed data.
The executable is compressed using UPX
Authenticode signature is invalid

How to determine Ulise.326984?


File Info:
name: F77DF97AF82A3D1D46CD.mlw
path: /opt/CAPEv2/storage/binaries/0c301e72ddb26ade2b542fbfab0c1a651dc24fcb848c695a940e7fc1bbd472d6
crc32: 35692BAB
md5: f77df97af82a3d1d46cdfcbc8f707927
sha1: bcd28debd7e6d172a4b3f4fd4d582f8faad3a889
sha256: 0c301e72ddb26ade2b542fbfab0c1a651dc24fcb848c695a940e7fc1bbd472d6
sha512: b05dd99cb45ca73076cf7879a1d9f598f5e6eec0d30494f24bb86077dd453de316bd13dca5670876cf7ef057f5fcb3391a0537e3144a315e3603418d9418b1de
ssdeep: 6144:CuIlWqB+ihabs7Ch9KwyF5LeLodp2D1Mmakda0qLqIq:p6Wq4aaE6KwyF5L0Y2D1PqL8
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1F45423EF72A4F911E8BC1272EA4303D1C0E07931AB78DB7B71606A175CAF1146D6BA4D
sha3_384: 1c1d60493e76a45f8ce4dff08e51c9688cf4f397ddf2d82733366196a51a3d2f6c467c6307086f69eaf0fe49351d209b
ep_bytes: 625b653bde3b5a7070ff8f1629fa31c0
timestamp: 2012-01-29 21:27:45

Version Info:
0: [No Data]

Ulise.326984 also known as:

Bkav	W32.AIDetect.malware1
Lionic	Trojan.Win32.Generic.4!c
MicroWorld-eScan	Gen:Variant.Ulise.326984
FireEye	Gen:Variant.Ulise.326984
McAfee	RDN/Generic.hra
K7AntiVirus	Trojan ( 004bcce41 )
Alibaba	Trojan:Win32/HckPk.e72ddbda
K7GW	Trojan ( 004bcce41 )
Cybereason	malicious.bd7e6d
Cyren	W32/Graftor.FU.gen!Eldorado
Symantec	ML.Attribute.HighConfidence
APEX	Malicious
Paloalto	generic.ml
BitDefender	Gen:Variant.Ulise.326984
Avast	Win32:Malware-gen
Ad-Aware	Gen:Variant.Ulise.326984
Sophos	Mal/HckPk-A
Comodo	Packed.Win32.MUPX.Gen@24tbus
TrendMicro	TROJ_GEN.R053C0PL321
McAfee-GW-Edition	BehavesLike.Win32.Generic.dc
Emsisoft	Gen:Variant.Ulise.326984 (B)
Ikarus	Trojan.Agent
GData	Gen:Variant.Ulise.326984
Antiy-AVL	Trojan/Generic.ASBOL.C6A4
Microsoft	Trojan:Win32/Sabsik.FL.B!ml
Cynet	Malicious (score: 100)
AhnLab-V3	Malware/Win.Generic.R455845
ALYac	Gen:Variant.Ulise.326984
MAX	malware (ai score=81)
TrendMicro-HouseCall	TROJ_GEN.R053C0PL321
Rising	Malware.Heuristic!ET#97% (RDMK:cmRtazqs4ZIlHeTm+jnd0OwCRzMp)
SentinelOne	Static AI – Malicious PE
Fortinet	W32/Graftor.FU!tr
AVG	Win32:Malware-gen
CrowdStrike	win/malicious_confidence_80% (W)

How to remove Ulise.326984?

Ulise.326984 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X