How to remove “Zusy.442845”?

The Zusy.442845 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Zusy.442845 virus can do?

The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid

How to determine Zusy.442845?


File Info:
name: 592A9EBEDAB83785CBF8.mlw
path: /opt/CAPEv2/storage/binaries/b5af0662d7cf0c39b255f308fe5c6be7dbab7c9f5e30a777d0a55b2c54d9dfad
crc32: D43D0250
md5: 592a9ebedab83785cbf82fa165b32de8
sha1: a99d4b27d5e32af3a7241f3b761699cb4a1edce5
sha256: b5af0662d7cf0c39b255f308fe5c6be7dbab7c9f5e30a777d0a55b2c54d9dfad
sha512: f478847e13a963c73663945fd66174f647843a581381be15c74c2d1f2685e942b8a2b62050b788c6a4b5d4ab14a54ef774bdfc2a1bb6b514a879f37e9384276b
ssdeep: 384:V+caXPdfZjhQpVdE0XGZGCNWLBj6HcwPhNWAWByD215oXMbH:V+dXNZjh+VdE4GMCA9eFhyByDC7
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T10403F715B640C037F8EA01FFDAFE4DA5492CDD681B6AD1D3A1C305EA6A502D72036BDB
sha3_384: 53f9321640a80137d2e441e6d8f971cca049e85edf61d3505ee4367d3eed14f839dea52b7f960086d9da350f7aefc7c7
ep_bytes: e9980f0000e9f03e0000e9ce390000e9
timestamp: 2021-08-12 10:48:07

Version Info:
0: [No Data]

Zusy.442845 also known as:

MicroWorld-eScan	Gen:Variant.Zusy.442845
FireEye	Generic.mg.592a9ebedab83785
McAfee	RDN/Generic.hbg
Sangfor	Trojan.Win32.Agent.V9ru
Alibaba	Trojan:Win32/Fugrafa.7b21986e
Cyren	W32/Fugrafa.G.gen!Eldorado
Symantec	Trojan.Gen.MBT
Elastic	malicious (high confidence)
APEX	Malicious
Cynet	Malicious (score: 100)
BitDefender	Gen:Variant.Zusy.442845
ViRobot	Trojan.Win32.Z.Win.39936.BX
Avast	FileRepMalware [Misc]
Emsisoft	Gen:Variant.Zusy.442845 (B)
VIPRE	Gen:Variant.Zusy.442845
McAfee-GW-Edition	BehavesLike.Win32.Generic.nt
SentinelOne	Static AI – Suspicious PE
GData	Win32.Trojan.PSE.71MWTM
Jiangmin	Trojan.Ulise.ap
MAX	malware (ai score=88)
Antiy-AVL	Trojan/Win32.Wacatac
Arcabit	Trojan.Zusy.D6C1DD
Microsoft	Trojan:Win32/Wacatac.B!ml
Google	Detected
AhnLab-V3	Malware/Win.Generic.C5058984
VBA32	Trojan.Rozena
ALYac	Gen:Variant.Zusy.442845
Cylance	unsafe
Panda	Trj/Chgt.AD
TrendMicro-HouseCall	TROJ_GEN.R002H0CED23
Rising	Trojan.Generic@AI.100 (RDML:GWuXiKxmpNc+Hd+u512VXQ)
Ikarus	Trojan.MSIL.Inject
Fortinet	W32/GenericKDZ.85932!tr
AVG	FileRepMalware [Misc]
DeepInstinct	MALICIOUS

How to remove Zusy.442845?

Zusy.442845 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X