Malware

What is “Lazy.172530 (B)”?

Malware Removal

The Lazy.172530 (B) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware - Review 2020

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
6-day free trial available.

What Lazy.172530 (B) virus can do?

  • The binary contains an unknown PE section name indicative of packing
  • The executable is compressed using UPX
  • Authenticode signature is invalid

How to determine Lazy.172530 (B)?


File Info:

name: B354716E946B58DE12E2.mlw
path: /opt/CAPEv2/storage/binaries/0dad548d6ba08cc4fa9fa10fa7ebe36c515b606f25be2502710fcdeb1e7edfa8
crc32: 8C2F3FD3
md5: b354716e946b58de12e2302c1ea8a643
sha1: 96ec403be08110445a8a08a949979f070c18e6e8
sha256: 0dad548d6ba08cc4fa9fa10fa7ebe36c515b606f25be2502710fcdeb1e7edfa8
sha512: 23c76f429e8f2e4a154668a9c2096ed814c85bba86fe254be2aa091de2f271cce40d8de1984f88bb09845159d264a64c48047485e24051cba081a719526dc751
ssdeep: 768:0FuFOGGofW+ZIneKpO+DsqUj9a3UiRWumzw/GSVs1kQEbkhD5/Boj:0gWofZKG0s7Gn
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T16F53F82769318876F41546B046B60B38B830D66204FA86ABEFC4DEF02EF3B369B5551D
sha3_384: a74560eba3ecfc015707d053ab29b6540abb728a091486f386f422f061188495f5fb423ed33ecc39f7f2b9b1eae8c97d
ep_bytes: e88b5e0000e8215e000033c0c3909090
timestamp: 2022-02-28 21:11:34

Version Info:

0: [No Data]

Lazy.172530 (B) also known as:

BkavW32.AIDetect.malware1
tehtrisGeneric.Malware
MicroWorld-eScanGen:Variant.Lazy.172530
FireEyeGeneric.mg.b354716e946b58de
ALYacGen:Variant.Lazy.172530
CylanceUnsafe
SangforSuspicious.Win32.Save.a
Cybereasonmalicious.be0811
BitDefenderThetaGen:NN.ZexaF.34742.dqW@aOSTLTj
CyrenW32/Agent.ENH.gen!Eldorado
Elasticmalicious (high confidence)
ESET-NOD32a variant of Win32/TrojanDownloader.Agent.GHY
ClamAVWin.Trojan.Generic-9907950-0
KasperskyVHO:Trojan.Win32.Agent.gen
BitDefenderGen:Variant.Lazy.172530
NANO-AntivirusTrojan.Win32.Razy.jnotkd
AvastWin32:Trojan-gen
TencentTrojan.Win32.Agentb.wp
Ad-AwareGen:Variant.Lazy.172530
SophosML/PE-A
ComodoPacked.Win32.MUPX.Gen@24tbus
ZillyaTrojan.Agent.Win32.2732389
McAfee-GW-EditionBehavesLike.Win32.Generic.km
Trapminemalicious.high.ml.score
EmsisoftGen:Variant.Lazy.172530 (B)
SentinelOneStatic AI – Malicious PE
JiangminTrojan.Agent.duce
AviraTR/Crypt.XPACK.Gen
MAXmalware (ai score=85)
MicrosoftTrojan:Win32/Wacatac.B!ml
ArcabitTrojan.Lazy.D2A1F2
GDataWin32.Trojan.PSE.1EMVNYF
CynetMalicious (score: 100)
AhnLab-V3Dropper/Win.Generic.R477079
Acronissuspicious
McAfeeGenericRXRQ-HV!B354716E946B
MalwarebytesMalware.AI.540018533
APEXMalicious
RisingTrojan.Agent!8.B1E (C64:YzY0OgSb9ifKoHh7Xw)
YandexTrojan.Agent!GU4cJl39LrM
IkarusTrojan-Downloader
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/Agent.FTV!tr.dldr
AVGWin32:Trojan-gen
PandaTrj/GdSda.A
CrowdStrikewin/malicious_confidence_100% (D)

How to remove Lazy.172530 (B)?

Lazy.172530 (B) removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment