Malware

Kazy.496788 removal instruction

Malware Removal

The Kazy.496788 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Kazy.496788 virus can do?

  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • Possible date expiration check, exits too soon after checking local time
  • Dynamic (imported) function loading detected
  • Authenticode signature is invalid
  • Anomalous binary characteristics

How to determine Kazy.496788?



File Info:

name: 3E9C23DAF8654D679511.mlw
path: /opt/CAPEv2/storage/binaries/7d01fead2ab1bdd1fab0f649f94a74b12cd288b8ccdc8d699b76b0db0c9d6c80
crc32: 65D11059
md5: 3e9c23daf8654d6795111bffe4fcaa5a
sha1: 867324a6ed49b05c24da5cefe0985e32718ae92e
sha256: 7d01fead2ab1bdd1fab0f649f94a74b12cd288b8ccdc8d699b76b0db0c9d6c80
sha512: 66533d893473605fb10903c30c0638d258a8114e6ac88288c65a64b95b07c950eb717a6a8943231feac5317a34d83b9318cd211ae5c470631e5f31136fc6908c
ssdeep: 24576:Jm5IIVFYkU/zJCmNfAcWmsGpfD7gWzpnNfC16:XfrkmNfqWgWPq16
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T17E157C113BE1C076C26235B2466AD37926BAB9311F318ACFA6941F3E5F306C19D3935E
sha3_384: 82e6aa3a2300fe3560f4cf27d4088ccec695d31e84e1f9a7af5a5dac6143ff2cd4b6fdc277e19525e90c1a65f9c36476
ep_bytes: e8d7b10000e979feffff8bff558becff
timestamp: 2013-04-22 12:17:35


Version Info:

CompanyName: Samsung Electronics
FileDescription: LiveUpdate Manager
FileVersion: 1, 0, 0, 8
InternalName: LUManager
LegalCopyright: Copyright (C) 2013
OriginalFilename: LUManager.EXE
ProductName: LUManager Application
ProductVersion: 1, 0, 0, 8
Translation: 0x0409 0x04b0

Kazy.496788 also known as:

LionicVirus.Win32.Kate.l4Cs
MicroWorld-eScanGen:Variant.Kazy.496788
FireEyeGen:Variant.Kazy.496788
McAfeeArtemis!3E9C23DAF865
CylanceUnsafe
K7AntiVirusRiskware ( 0040eff71 )
AlibabaTrojanDropper:Win32/Bototer.8e49f439
K7GWRiskware ( 0040eff71 )
SymantecW32.Fujacks.CE!inf
ESET-NOD32a variant of Generik.CXXWCOU
BaiduWin32.Virus.Wapomi.a
TrendMicro-HouseCallCryp_Odra
Paloaltogeneric.ml
KasperskyTrojan-Dropper.Win32.Bototer.bff
BitDefenderGen:Variant.Kazy.496788
NANO-AntivirusTrojan.Win32.WowSub.etjuvq
AvastWin32:Jadtre-B
Ad-AwareGen:Variant.Kazy.496788
EmsisoftGen:Variant.Kazy.496788 (B)
DrWebWin32.WowSub.4
TrendMicroCryp_Odra
McAfee-GW-EditionW32/Fujacks.cm
SophosMal/Generic-S
IkarusWin32.Diliman
GDataGen:Variant.Kazy.496788
AviraW32/Diliman.B
MAXmalware (ai score=83)
MicrosoftTrojan:Win32/Wacatac.B!ml
ALYacGen:Variant.Kazy.496788
MalwarebytesMalware.AI.2319565596
TencentTrojan.Win32.BitCoinMiner.la
MaxSecureVirus.W32.Bototer.A
FortinetW32/Wapomi.AO
AVGWin32:Jadtre-B
Cybereasonmalicious.af8654
PandaTrj/CI.A

How to remove Kazy.496788?

Kazy.496788 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment