What is “Ulise.343209”?

The Ulise.343209 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Ulise.343209 virus can do?

The binary contains an unknown PE section name indicative of packing
The binary likely contains encrypted or compressed data.
The executable is compressed using UPX
Authenticode signature is invalid

How to determine Ulise.343209?


File Info:
name: 9857137F948D10ECA8E6.mlw
path: /opt/CAPEv2/storage/binaries/dc4ae2ba893d4bbd59195bfab6edd0e2a326d7f4be22c49e846e4e379f32192b
crc32: 3567A8F7
md5: 9857137f948d10eca8e6a902d9ca04fd
sha1: 60cd670967e618eebb2425aebdf65bad1e329cde
sha256: dc4ae2ba893d4bbd59195bfab6edd0e2a326d7f4be22c49e846e4e379f32192b
sha512: cb3988e6ca1c9c343b0bc5e7af23be7dda2499653cad50909ef6b6290eefd7a728e6da54825fbdc5fb4566580d2eeff10e1843c5f864fcbb15bb6f64381c2a74
ssdeep: 6144:cuIlWqB+ihabsquIlWqB+ihabs7Ch9KwyF5LeLodp2D1Mmakd8:36Wq4aa46Wq4aaE6KwyF5L0Y2D1A
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1C25412FFB5A9F611F47C12F69A820292C1E063A597F9ED7DA1250153888F004ADBDF8D
sha3_384: 5fe4600168d4035a80257a6a357ca0fc8fd6465621fa546df60ab99a244ecbdc69e79af3adcd8ac65bddd46608eb665c
ep_bytes: 5a6dc1adfb3b5f4e389586a26e22b335
timestamp: 2012-01-29 21:27:45

Version Info:
0: [No Data]

Ulise.343209 also known as:

Bkav	W32.AIDetect.malware1
Elastic	malicious (high confidence)
MicroWorld-eScan	Gen:Variant.Ulise.343209
FireEye	Generic.mg.9857137f948d10ec
McAfee	GenericRXAA-AA!9857137F948D
Cylance	Unsafe
Sangfor	Suspicious.Win32.Ulise.343209
K7AntiVirus	Trojan ( 004bcce41 )
Alibaba	Trojan:Win32/HckPk.3ab47401
K7GW	Trojan ( 004bcce41 )
CrowdStrike	win/malicious_confidence_70% (W)
Cyren	W32/Graftor.FU.gen!Eldorado
Symantec	ML.Attribute.HighConfidence
APEX	Malicious
Avast	Win32:Malware-gen
Cynet	Malicious (score: 100)
BitDefender	Gen:Variant.Ulise.343209
Ad-Aware	Gen:Variant.Ulise.343209
Emsisoft	Gen:Variant.Ulise.343209 (B)
Comodo	Packed.Win32.MUPX.Gen@24tbus
TrendMicro	TROJ_GEN.R053C0PL421
McAfee-GW-Edition	BehavesLike.Win32.Generic.dc
Sophos	Mal/Generic-R + Mal/HckPk-A
Paloalto	generic.ml
GData	Gen:Variant.Ulise.343209
Antiy-AVL	Trojan/Generic.ASBOL.C6A4
Gridinsoft	Ransom.Win32.Wacatac.sa
Microsoft	Trojan:Win32/Wacatac.B!ml
AhnLab-V3	Malware/Win.ZV.R456935
ALYac	Gen:Variant.Ulise.343209
MAX	malware (ai score=80)
TrendMicro-HouseCall	TROJ_GEN.R053C0PL421
Rising	Malware.Heuristic!ET#96% (RDMK:cmRtazoCmuVrgc2sQvzGk7qIuvX1)
SentinelOne	Static AI – Malicious PE
MaxSecure	Trojan.Malware.139761554.susgen
Fortinet	W32/Graftor.FU!tr
AVG	Win32:Malware-gen

How to remove Ulise.343209?

Ulise.343209 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X