Malware

Tedy.1184 (B) information

Malware Removal

The Tedy.1184 (B) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Tedy.1184 (B) virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Reads data out of its own binary image
  • CAPE extracted potentially suspicious content
  • Drops a binary and executes it
  • Authenticode signature is invalid
  • Behavioural detection: Injection (inter-process)
  • CAPE detected the embedded pe malware family
  • Anomalous binary characteristics
  • Attempts to modify Explorer settings to prevent hidden files from being displayed
  • Yara detections observed in process dumps, payloads or dropped files

How to determine Tedy.1184 (B)?



File Info:

name: B7CC6E4685FC13B5F03B.mlw
path: /opt/CAPEv2/storage/binaries/11babe48de840478697c102c55c8d6f784bf6a68a97310e39a1d16095c3dc3d0
crc32: 8730149D
md5: b7cc6e4685fc13b5f03b47615c67d0bf
sha1: 4d07a1526bf5ce8cf4b985298a3cae90fb814f48
sha256: 11babe48de840478697c102c55c8d6f784bf6a68a97310e39a1d16095c3dc3d0
sha512: 596fcb4dbf1c41e0cd9d2f996d6da49abb09545f7f472871bcd240abac9b3886172d249738586bc6540747e6d98401ccdb4d25b1a25f5f1f10c3115226b5a149
ssdeep: 1536:N8JAu1D8HOXlXsX3XnkcUckD98kMEk7f:aJAoyzkcUckD98kMEM
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T13343D6BDB20514DAC62EB2317A5BC7EF05E7648A0F5B1A8B65253738DC34F202E65B07
sha3_384: 90685799a6f0070932fc72eef045653ff171b2fd320ff9cae3169e89aace5bc4632b36ec76cdd8eb3b7ce784f59248ff
ep_bytes: 6878124000e8f0ffffff000040000000
timestamp: 2010-07-13 08:43:14


Version Info:

Translation: 0x0409 0x04b0
ProductName: e
FileVersion: 8.15
ProductVersion: 8.15
InternalName: ilnFyPIa
OriginalFilename: ilnFyPIa.exe

Tedy.1184 (B) also known as:

BkavW32.AIDetectMalware
MicroWorld-eScanGen:Variant.Tedy.1184
CAT-QuickHealWorm.VBNA.gen
SkyhighBehavesLike.Win32.VBObfus.qm
McAfeeDownloader-CJX.gen.a
MalwarebytesGeneric.Worm.AutoRun.DDS
VIPREGen:Variant.Tedy.1184
SangforSuspicious.Win32.Save.vb
K7AntiVirusTrojan ( f1000d011 )
K7GWTrojan ( f1000d011 )
Cybereasonmalicious.685fc1
BaiduWin32.Worm.VB.as
VirITWorm.Win32.VBNA.AJEU
SymantecW32.Changeup
Elasticmalicious (high confidence)
ESET-NOD32Win32/AutoRun.VB.RD
APEXMalicious
TrendMicro-HouseCallWORM_ESFURY.SMA
ClamAVWin.Trojan.VB-1126
KasperskyWorm.Win32.VBNA.ajeu
BitDefenderGen:Variant.Tedy.1184
NANO-AntivirusTrojan.Win32.VB.covjwe
AvastWin32:VB-PQX [Wrm]
TencentWorm.Win32.VBNA.xhb
EmsisoftGen:Variant.Tedy.1184 (B)
GoogleDetected
F-SecureWorm:W32/Vobfus.AX
DrWebTrojan.MulDrop1.39525
TrendMicroWORM_ESFURY.SMA
Trapminesuspicious.low.ml.score
FireEyeGeneric.mg.b7cc6e4685fc13b5
SophosW32/AutoRun-BFF
SentinelOneStatic AI – Malicious PE
JiangminWorm/VBNA.gxee
VaristW32/VB.BA.gen!Eldorado
AviraTR/Dldr.VB.dxh
MAXmalware (ai score=80)
Antiy-AVLWorm/Win32.WBNA.gen
MicrosoftWorm:Win32/Vobfus.S
XcitiumTrojWare.Win32.VB.SWA@527lh3
ArcabitTrojan.Tedy.D4A0
ViRobotTrojan.Win32.Generic.57344.D
ZoneAlarmWorm.Win32.VBNA.ajeu
GDataGen:Variant.Tedy.1184
CynetMalicious (score: 100)
AhnLab-V3Win32/Vbna4.worm.Gen
VBA32Worm.VBNA
ALYacGen:Variant.Tedy.1184
Cylanceunsafe
PandaW32/Vobfus.EQ
RisingWorm.VobfusEx!1.99EB (CLASSIC)
YandexTrojan.GenAsa!zV8aC7+kz2c
IkarusWorm.Win32.Vobfus
MaxSecureTrojan.Malware.1406854.susgen
FortinetW32/Injector.ADYA!tr
BitDefenderThetaAI:Packer.C353B2BA20
AVGWin32:VB-PQX [Wrm]
DeepInstinctMALICIOUS
CrowdStrikewin/malicious_confidence_100% (D)
alibabacloudTrojan.Win.UnkAgent

How to remove Tedy.1184 (B)?

Tedy.1184 (B) removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment