Categories: Malware

Ulise.99314 removal

The Ulise.99314 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Ulise.99314 virus can do?

Executable code extraction
Injection (inter-process)
Injection (Process Hollowing)
Creates RWX memory
Reads data out of its own binary image
Drops a binary and executes it
Executed a very long command line or script command which may be indicative of chained commands or obfuscation
A scripting utility was executed
Uses Windows utilities for basic functionality
Executed a process and injected code into it, probably while unpacking
Attempts to repeatedly call a single API many times in order to delay analysis time
Steals private information from local Internet browsers
Installs itself for autorun at Windows startup
Attempts to execute a powershell command with suspicious parameter/s
Creates a hidden or system file
Harvests credentials from local FTP client softwares
Harvests information related to installed instant messenger clients
Harvests information related to installed mail clients
Collects information to fingerprint the system

Related domains:

fentlix.com

How to determine Ulise.99314?


File Info:
crc32: 6C0A521Dmd5: bb14c746c896241507ed4c14963d5b0dname: 878094.exesha1: 79c38204213b68620a3fb694a316e650a0978620sha256: 9ed50e93f4a62bcaaaefda09a065e54a872cc2894c3acd9d5556562d83f1d311sha512: 456d9e1463994a161c91a9400c87557b612dcf50161454ba084bb59fb8bc93b3fec054df8256110e58293c672347747bd3a7ea537f2adaecd5904b003150ad25ssdeep: 24576:rmoO8itEqfZKVXfNGmwspzDlmz7hpXYeLvw:qvZyPIUDCFdrwtype: PE32 executable (GUI) Intel 80386, for MS Windows
Version Info:
0: [No Data]

Ulise.99314 also known as:

MicroWorld-eScan	Gen:Variant.Ulise.99314
Cylance	Unsafe
Sangfor	Malware
CrowdStrike	win/malicious_confidence_70% (W)
K7GW	Trojan ( 005606d21 )
K7AntiVirus	Trojan ( 005606d21 )
F-Prot	W32/S-5f21cf29!Eldorado
Symantec	Trojan.Gen.2
APEX	Malicious
Paloalto	generic.ml
BitDefender	Gen:Variant.Ulise.99314
Emsisoft	Gen:Variant.Graftor.709686 (B)
BitDefenderTheta	Gen:NN.ZelphiF.34090.KK0@aaE0D!gk
Invincea	heuristic
McAfee-GW-Edition	BehavesLike.Win32.Backdoor.cc
Trapmine	malicious.high.ml.score
FireEye	Generic.mg.bb14c746c8962415
Sophos	Mal/Generic-S
Ikarus	Trojan.Inject
Cyren	W32/S-5f21cf29!Eldorado
Fortinet	W32/Injector.EKMJ!tr
Microsoft	Trojan:Win32/Occamy.C
McAfee	Artemis!BB14C746C896
MAX	malware (ai score=82)
TrendMicro-HouseCall	TROJ_GEN.R020H0DBB20
Tencent	Win32.Exploit.Uac.Pezc
GData	Win32.Trojan-Stealer.LokiBot.7ET92N
Cybereason	malicious.4213b6
Qihoo-360	HEUR/QVM10.1.34C5.Malware.Gen