Malware

About “Kazy.397487” infection

Malware Removal

The Kazy.397487 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Kazy.397487 virus can do?

  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • Dynamic (imported) function loading detected
  • Enumerates the modules from a process (may be used to locate base addresses in process injection)
  • Authenticode signature is invalid

How to determine Kazy.397487?



File Info:

name: 993B2F16EFD741E81082.mlw
path: /opt/CAPEv2/storage/binaries/606a6ce607bed39c052f49cc09d26fffd5096899335216960d53dea1816d11cd
crc32: BA4FA9DD
md5: 993b2f16efd741e81082614053130875
sha1: 40cf00432433e94ec7d75010b7e8a38102db5d5d
sha256: 606a6ce607bed39c052f49cc09d26fffd5096899335216960d53dea1816d11cd
sha512: 0dfe7c7be8c3607087c8f670f917761707eaf20ac7279c8f34339a35e78330104bdf93cbdd63397fe6cfb2b59fff6a9ac5aade877f0e7994c33995a9f98e0dbc
ssdeep: 12288:nFCGcIPdIAwrJC2BSEdetRx2IiRZKnGkNt4hCPFyHVytxD0NBA0TZDcM:nIGcERxxiRSGkxcytxl0TmM
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T143C46B99BA92403BC0E227F219BD873E79770D00191987036BA578255FF62642D27EFF
sha3_384: 00b07cb5eefebfa818dc7457604dfcb9560f3383bfb7e1486cd4a04af740d9a8d489cb7bb151bb1b69efc03d51a02626
ep_bytes: 558bec648b15000000006aff68305947
timestamp: 2011-09-02 03:20:40


Version Info:

0: [No Data]

Kazy.397487 also known as:

LionicTrojan.Win32.Generic.4!c
MicroWorld-eScanGen:Variant.Kazy.397487
McAfeeArtemis!993B2F16EFD7
CylanceUnsafe
Cybereasonmalicious.6efd74
tehtrisGeneric.Malware
ESET-NOD32a variant of Generik.IURARUW
APEXMalicious
Paloaltogeneric.ml
BitDefenderGen:Variant.Kazy.397487
AvastWin32:Malware-gen
Ad-AwareGen:Variant.Kazy.397487
McAfee-GW-EditionBehavesLike.Win32.BadFile.hh
Trapminemalicious.high.ml.score
FireEyeGen:Variant.Kazy.397487
EmsisoftGen:Variant.Kazy.397487 (B)
GDataGen:Variant.Kazy.397487
ArcabitTrojan.Kazy.D610AF
MicrosoftTrojan:Win32/Wacatac.B!ml
ALYacGen:Variant.Kazy.397487
MAXmalware (ai score=99)
RisingTrojan.Win32.Generic.18C3973C (C64:YzY0Ojuz1nE2vstV)
YandexTrojan.Igent.bWVS71.5
IkarusWin32.SuspectCrc
MaxSecureTrojan.Malware.73538389.susgen
AVGWin32:Malware-gen
PandaTrj/Genetic.gen
CrowdStrikewin/malicious_confidence_60% (W)

How to remove Kazy.397487?

Kazy.397487 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment