Malware

Lazy.516035 (file analysis)

Malware Removal

The Lazy.516035 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Lazy.516035 virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Sample contains Overlay data
  • Reads data out of its own binary image
  • CAPE extracted potentially suspicious content
  • Drops a binary and executes it
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid
  • Collects information to fingerprint the system
  • Anomalous binary characteristics

How to determine Lazy.516035?



File Info:

name: 23DDA572379696F2188F.mlw
path: /opt/CAPEv2/storage/binaries/6be02f8463021583d8f3df616e4e84473a518711a15e4a230859a0c4f7fd271e
crc32: 53C30333
md5: 23dda572379696f2188fdcb65b32eb42
sha1: 3d130f18f8cd0992fc9d63067fb5b4fe3ba03949
sha256: 6be02f8463021583d8f3df616e4e84473a518711a15e4a230859a0c4f7fd271e
sha512: 1aadf0c30a7a30ef62fe0c0823df5e5ade538c05f63cbbfa3a937fb35f19d3980f0e112606f01d52d2b73ee3e31ab50fd540c3b4313c6125369d4086a922426c
ssdeep: 3072:9/eOrj+K1j+stAo7jpD73KvTYEIQkeJM9:FBlAQd3eCQTJY
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T11AD3BE02B691CCE1D409FF30D883C7BD86A2BC58D961421BB2F4EE5FED766604D21B99
sha3_384: f47d3ad068a5cf6ef7cfbf7635d39d732017def283aefd200d21720143185e8120ef14433bad063d987c5ca7398a921b
ep_bytes: 5589e55381eca4000000c78578ffffff
timestamp: 2012-03-12 11:18:24


Version Info:

0: [No Data]

Lazy.516035 also known as:

BkavW32.AIDetectMalware
AVGWin32:Kryptik-LZD [Trj]
Elasticmalicious (high confidence)
DrWebTrojan.Mods
MicroWorld-eScanGen:Variant.Lazy.516035
FireEyeGeneric.mg.23dda572379696f2
SkyhighBehavesLike.Win32.Eggnog.ch
McAfeeGeneric.atg-FAIF!23DDA5723796
MalwarebytesGeneric.Malware.AI.DDS
ZillyaTrojan.Kryptik.Win32.4764773
SangforSuspicious.Win32.Save.a
BitDefenderThetaGen:NN.ZexaF.36804.iyX@aW8@RVei
VirITTrojan.Win32.Crypt.CKYW
SymantecML.Attribute.HighConfidence
tehtrisGeneric.Malware
ESET-NOD32a variant of Win32/Kryptik.BCUX
CynetMalicious (score: 100)
APEXMalicious
AvastWin32:Kryptik-LZD [Trj]
ClamAVWin.Malware.Bladabindi-10019611-0
KasperskyHEUR:Trojan.Win32.Generic
BitDefenderGen:Variant.Lazy.516035
NANO-AntivirusTrojan.Win32.Mods.cxmziy
TencentTrojan.Win32.Kryptik.bcig
EmsisoftGen:Variant.Lazy.516035 (B)
F-SecureTrojan.TR/Crypt.ZPACK.Gen7
BaiduWin32.Trojan.Kryptik.agw
VIPREGen:Variant.Lazy.516035
TrendMicroPAK_Xed-21
Trapminemalicious.high.ml.score
SophosML/PE-A
IkarusTrojan.Win32.ShipUp
JiangminTrojan/ShipUp.sx
VaristW32/ShipUp.Q.gen!Eldorado
AviraTR/Crypt.ZPACK.Gen7
MAXmalware (ai score=88)
Antiy-AVLTrojan/Win32.Kryptik
Kingsoftmalware.kb.a.1000
MicrosoftTrojan:Win32/Bladabindi!pz
XcitiumTrojWare.Win32.Kryptik.BCUX@4ys1di
ArcabitTrojan.Lazy.D7DFC3
ZoneAlarmHEUR:Trojan.Win32.Generic
GDataGen:Variant.Lazy.516035
GoogleDetected
AhnLab-V3Trojan/Win.ShipUp.R642019
Acronissuspicious
VBA32BScope.Trojan.Mods
ALYacGen:Variant.Lazy.516035
Cylanceunsafe
PandaTrj/GdSda.A
TrendMicro-HouseCallPAK_Xed-21
RisingTrojan.Kryptik!1.A7F4 (CLASSIC)
YandexTrojan.GenAsa!NYrSR9I8aww
SentinelOneStatic AI – Malicious PE
MaxSecureTrojan.Malware.121218.susgen
FortinetW32/Kryptik.BCUX!tr
DeepInstinctMALICIOUS

How to remove Lazy.516035?

Lazy.516035 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment