Malware

Lazy.492972 information

Malware Removal

The Lazy.492972 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Lazy.492972 virus can do?

  • Sample contains Overlay data
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • CAPE detected the shellcode get eip malware family
  • Yara detections observed in process dumps, payloads or dropped files

How to determine Lazy.492972?



File Info:

name: 6E6A37EFB4A00E74E4D8.mlw
path: /opt/CAPEv2/storage/binaries/79bc9053d3c27b5bde63d4715028e8a70577821c6415aefd5fa20896136d9a6f
crc32: 4D2FDCE2
md5: 6e6a37efb4a00e74e4d8057f39391c5c
sha1: 17be5415d914d007c36a0b39922727528b6e5ec9
sha256: 79bc9053d3c27b5bde63d4715028e8a70577821c6415aefd5fa20896136d9a6f
sha512: 9e39d66d961f374475fd0505574eb3673df3655e357c313bdeac7414a1855048778ae732a0cd0ec491937a4d2a7ce8689501c9a97fefddb3c02577899c1ea591
ssdeep: 98304:5V91a6666666666666666666666666666666x666666666666666fwwwwwwwwww8:PxIbPxnTZg43zGi4XlShCJcyO7vyBSUN
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T137469E51F3602134E8AB6A71393D6B6A09283E639F31C7CF55D92C641F709C22B39B5B
sha3_384: 7bd392952ec643cb321db6e0e94fdf5d1a789c924fff25a443623f23a7a405ab146521b6852e7ced3686a789add98aa2
ep_bytes: e816050000e97afeffffa12c60450053
timestamp: 2024-02-06 13:12:12


Version Info:

CompanyName: Opera Software
FileDescription: Opera Installer
FileVersion: 107.0.5045.15
InternalName: Opera
LegalCopyright: Copyright Opera Software 2024
ProductName: Opera Installer
ProductVersion: 107.0.5045.15
Translation: 0x0409 0x04b0

Lazy.492972 also known as:

tehtrisGeneric.Malware
MicroWorld-eScanGen:Variant.Lazy.492972
SkyhighBehavesLike.Win32.Generic.th
McAfeeArtemis!6E6A37EFB4A0
VIPREGen:Variant.Lazy.492972
BitDefenderGen:Variant.Lazy.492972
RisingTrojan.Generic@AI.81 (RDML:ONphu1tx84GxI4r7V0qVRQ)
EmsisoftGen:Variant.Lazy.492972 (B)
Trapminemalicious.moderate.ml.score
FireEyeGeneric.mg.6e6a37efb4a00e74
SophosGeneric ML PUA (PUA)
MAXmalware (ai score=82)
Antiy-AVLTrojan/Win32.Possiblethreat
ArcabitTrojan.Lazy.D785AC
GDataGen:Variant.Lazy.492972
AhnLab-V3Malware/Win.Generic.C5570842
BitDefenderThetaGen:NN.ZexaF.36802.@F2@aqjnSNci
ALYacGen:Variant.Zusy.540102
Cylanceunsafe

How to remove Lazy.492972?

Lazy.492972 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment