Tedy.149842 information

The Tedy.149842 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Tedy.149842 virus can do?

Dynamic (imported) function loading detected
CAPE extracted potentially suspicious content
Authenticode signature is invalid

How to determine Tedy.149842?


File Info:
name: EE73C707DDFD86B265CC.mlw
path: /opt/CAPEv2/storage/binaries/a5ccd4378e3147d1f2f59144bf184f9879c35bc1cf113a34efd012675a9c5242
crc32: E1C7BACB
md5: ee73c707ddfd86b265ccab423278b82a
sha1: 9a205312bd0d2b7ca172207c48f14d3e6e76155f
sha256: a5ccd4378e3147d1f2f59144bf184f9879c35bc1cf113a34efd012675a9c5242
sha512: 152466301e8df0e4874cb05e934d729f2dfba99c9644592cbf22d34a5c371f2739400aaf85c3bc197f3475842b98055ba123e9eae2f3dc70a46ce5b9d9b72da9
ssdeep: 192:f6W5iFl/iVMXb9QZ6RGZFQAfln0cAJNSca/foPdSmrV7g3JWpoWf:f6W2gWJZRGZjfl0r0wgWpoW
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T19E220926979D473ADAB60F715CE3C7801671FB96ED23CF2E79906005AC573440B61F2A
sha3_384: 9b472ed9979dca5ded84c387ea9136dc01a884e5bcabd3a94a4c419455add8a5219659bf860eb060f985aa297be5aa3c
ep_bytes: ff250020400000000000000000000000
timestamp: 2022-06-23 15:17:26

Version Info:
Translation: 0x0000 0x04b0
Comments: Dism Image Servicing Utility
CompanyName: Microsoft Corporation
FileDescription: Dism Image Servicing Utility
FileVersion: 10.0.17763.1697
InternalName: Mljfia.exe
LegalCopyright: © Microsoft Corporation. All rights reserved.
LegalTrademarks: 
OriginalFilename: Mljfia.exe
ProductName: Microsoft® Windows® Operating System
ProductVersion: 10.0.17763.1697
Assembly Version: 10.0.17763.1697

Tedy.149842 also known as:

Bkav	W32.AIDetectNet.01
DrWeb	Trojan.DownloaderNET.403
MicroWorld-eScan	Gen:Variant.Tedy.149842
FireEye	Generic.mg.ee73c707ddfd86b2
ALYac	Gen:Variant.Tedy.149842
Cylance	Unsafe
VIPRE	Gen:Variant.Tedy.149842
Sangfor	Trojan.Win32.Save.a
Arcabit	Trojan.Tedy.D24952
BitDefenderTheta	Gen:NN.ZemsilF.34786.am0@a0@LpNh
Cyren	W32/MSIL_Agent.DKB.gen!Eldorado
Symantec	MSIL.Downloader!gen8
Elastic	malicious (high confidence)
Kaspersky	HEUR:Trojan-Downloader.MSIL.Wagex.gen
BitDefender	Gen:Variant.Tedy.149842
Avast	Win32:DropperX-gen [Drp]
Ad-Aware	Gen:Variant.Tedy.149842
Emsisoft	Gen:Variant.Tedy.149842 (B)
McAfee-GW-Edition	RDN/Generic Downloader.x
Sophos	Mal/Generic-R + Troj/Krypt-LV
MAX	malware (ai score=84)
Microsoft	Trojan:Win32/Wacatac.B!ml
ZoneAlarm	HEUR:Trojan-Downloader.MSIL.Wagex.gen
GData	MSIL.Trojan-Downloader.Agent.BIZ
Cynet	Malicious (score: 100)
AhnLab-V3	Trojan/Win.Generic.C5166571
McAfee	RDN/Generic Downloader.x
Malwarebytes	Trojan.Downloader.MSIL.Generic
APEX	Malicious
SentinelOne	Static AI – Malicious PE
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	MSIL/Agent.MIB!tr.dldr
AVG	Win32:DropperX-gen [Drp]
CrowdStrike	win/malicious_confidence_100% (W)

How to remove Tedy.149842?

Tedy.149842 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X