Malware

Lazy.209994 removal guide

Malware Removal

The Lazy.209994 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Lazy.209994 virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX
  • Authenticode signature is invalid
  • Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine Lazy.209994?



File Info:

name: 2F01A3CDA379FC57F00B.mlw
path: /opt/CAPEv2/storage/binaries/184dd7c89361628e6b1fcb71f436ed63e27938d5cdf6939b8e3d97a9fe8a05c9
crc32: 8A85FEA4
md5: 2f01a3cda379fc57f00b134772a9ce74
sha1: c192fbe40d3807f70307255294d20f7a9d62c067
sha256: 184dd7c89361628e6b1fcb71f436ed63e27938d5cdf6939b8e3d97a9fe8a05c9
sha512: de82ca7cb26bf685fbd54016c336ec5b958ce4a8f0319e6e47f90c7faca004225d1be99dc819680b74485835adda881a92e7844c8aa3f332664e9c671b8093f4
ssdeep: 1536:2uKCwOZyq39hgnouy8E32OdU9FaRVaCDABr+ft9T7t:2owSbIoutEa9FGVaC0h+fX9
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T18593BF51F768A947ED5947B14876DD2642307C686EB0E38E308DBE3A7F733D24909A28
sha3_384: f7887b9f8c8ad0c0caf98182a953cc19e4a06df169853cfa868f1f008b7f71b0fa35b3ff5879b37ca4f4d0b04d725764
ep_bytes: 60be000042008dbe0010feff5789e58d
timestamp: 2009-12-24 02:37:54


Version Info:

Translation: 0x0409 0x04b0
Comments: Ultimate
CompanyName: Ultimate
FileDescription: Ultimate
LegalCopyright: Ultimate Copyrights
LegalTrademarks: O2JAM V3
ProductName: O2JAM V3
FileVersion: 1.00
ProductVersion: 1.00
InternalName: o2v3launcher
OriginalFilename: o2v3launcher.exe

Lazy.209994 also known as:

BkavW32.AIDetectMalware
MicroWorld-eScanGen:Variant.Lazy.209994
FireEyeGen:Variant.Lazy.209994
McAfeePWS-Zbot.gen.bas
SangforTrojan.Win32.Kazy.32744
Cybereasonmalicious.da379f
BitDefenderThetaGen:NN.ZevbaF.36196.fmKfai!IXHfi
APEXMalicious
BitDefenderGen:Variant.Lazy.209994
EmsisoftGen:Variant.Lazy.209994 (B)
VIPREGen:Variant.Lazy.209994
McAfee-GW-EditionBehavesLike.Win32.Trojan.nh
GDataGen:Variant.Lazy.209994
XcitiumWorm.Win32.Autorun.eb0@13re4o
ArcabitTrojan.Lazy.D3344A
ALYacGen:Variant.Lazy.209994
MAXmalware (ai score=84)
Cylanceunsafe
PandaGeneric Malware
RisingTrojan.Win32.Generic.169ACEFA (C64:YzY0OqhHafW0ZTud)
YandexTrojan.GenAsa!BiIv96jfv60
FortinetW32/Zbot.JK!tr.pws
DeepInstinctMALICIOUS
CrowdStrikewin/malicious_confidence_60% (D)

How to remove Lazy.209994?

Lazy.209994 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment