Should I remove “Lazy.193700 (B)”?

The Lazy.193700 (B) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Lazy.193700 (B) virus can do?

CAPE extracted potentially suspicious content
Authenticode signature is invalid

How to determine Lazy.193700 (B)?


File Info:
name: 24374C1D547634BD8ED8.mlw
path: /opt/CAPEv2/storage/binaries/5a75c402eaffcd5f36cb0a69b649eaf3d54e6be2add944e7a5491cf4b542764a
crc32: 1B3E60B9
md5: 24374c1d547634bd8ed858399e62ddf7
sha1: fff268ca60ff04b7acf254d5f29a8547e433a1d4
sha256: 5a75c402eaffcd5f36cb0a69b649eaf3d54e6be2add944e7a5491cf4b542764a
sha512: 7e85348c8528b71367467eb093c826193123f549d8b5f290e6ad265a2388d4178b4bf1e073000b70fdbe6047f3a19b6485aca1caf3489fde754b92809405b168
ssdeep: 12288:UiC8vdmZ+FyPo9UbJnyTbC8g/p906u4/Nwum6W0uooCdcQ5JXkFd98TxfI4:o+FyP2UETG99MxD
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T18525EAE02DE58C1EE2B3DB3256D57455BB2BA722332617C850CB03CBED029BD5D971A8
sha3_384: f2b6bd1470504100963bb6e8d58aa47ef4222a3a5430c771481d86be522d4ffa93dbf29e344eadcdff795d679dfd65fb
ep_bytes: ff250020400000000000000000000000
timestamp: 2022-10-03 01:41:41

Version Info:
Translation: 0x0000 0x04b0
Comments: XtuService
CompanyName: Intel(R) Corporation
FileDescription: XtuService.exe
FileVersion: 4.2.9.4695
InternalName: XtuService.exe
LegalCopyright: Copyright 2007-2021 Intel Corporation. All Rights Reserved.
OriginalFilename: XtuService.exe
ProductName: Intel(R) Extreme Tuning Utility
ProductVersion: 4.2.9.4695
Assembly Version: 9.3.8.2648

Lazy.193700 (B) also known as:

Elastic	malicious (high confidence)
MicroWorld-eScan	Gen:Variant.Lazy.193700
FireEye	Generic.mg.24374c1d547634bd
McAfee	Artemis!24374C1D5476
Malwarebytes	Malware.AI.3484867311
K7GW	Trojan ( 00592ee01 )
Symantec	ML.Attribute.HighConfidence
APEX	Malicious
Cynet	Malicious (score: 100)
Ad-Aware	Gen:Variant.Lazy.193700
BitDefenderTheta	Gen:NN.ZemsilF.34698.an0@a4H2HKc
TrendMicro	TROJ_GEN.R011C0WJA22
McAfee-GW-Edition	Artemis!Trojan
Emsisoft	Gen:Variant.Lazy.193700 (B)
SentinelOne	Static AI – Suspicious PE
Avira	HEUR/AGEN.1248318
ZoneAlarm	VHO:Trojan.MSIL.Exnet.gen
Microsoft	Trojan:Win32/Wacatac.B!ml
Google	Detected
Acronis	suspicious
MAX	malware (ai score=85)
TrendMicro-HouseCall	TROJ_GEN.R011C0WJA22
Tencent	Trojan.Win32.Coinminer.16000500
Fortinet	MSIL/Kryptik.AFDE!tr
CrowdStrike	win/malicious_confidence_90% (W)

How to remove Lazy.193700 (B)?

Lazy.193700 (B) removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X