Tedy.15447 (B) malicious file

The Tedy.15447 (B) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Tedy.15447 (B) virus can do?

Presents an Authenticode digital signature
Creates RWX memory
Dynamic (imported) function loading detected
Reads data out of its own binary image

How to determine Tedy.15447 (B)?


File Info:
name: A22E94DA9A04BF902AA5.mlw
path: /opt/CAPEv2/storage/binaries/0300caaa2d697327de739e52275c87d11dac06ad3df7c9181c492146686eb257
crc32: BE37215B
md5: a22e94da9a04bf902aa509cd424ac64b
sha1: c77311c3dbd513c5c6d1f83c2bf5aa794543860a
sha256: 0300caaa2d697327de739e52275c87d11dac06ad3df7c9181c492146686eb257
sha512: 3a232323b33ce82af1058aef027dfd010d0466169cbaf3e9b06cf8ab98866cdf21f4d1a4896e82e770f5c3b45c6a48a75870d35c697bde0990e8e6a57a09c8d6
ssdeep: 1536:ILXB65939tY6HBg4sXJbiwhKKS2n/TRVYxLnVN1KxSmiwpIfbmUOcVf2GoB:ILk395hYXJbiZKD8hnIx5iVfiDwoB
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T184E37D05A3A098B3C9570530E4A79B3AB732EED16670427317E0BE5D7EF1283692719F
sha3_384: d03c15495f5486ba58e4b850719788020d52ed2900831cbce433fca696211dd463359d815f0720b3826535a14aaae1a2
ep_bytes: 81ec8001000053555633db57895c2418
timestamp: 2009-12-05 22:50:41

Version Info:
CompanyName: iWin inc.
FileDescription: iWin Games Downloader
FileVersion: 1.0.6.0
LegalCopyright: Â© iWin inc.
ProductName: iWin Games
ProductVersion: 1.0.6.0
Translation: 0x0409 0x0000

Tedy.15447 (B) also known as:

Lionic	Trojan.Win32.Tedy.4!c
MicroWorld-eScan	Gen:Variant.Tedy.15447
FireEye	Gen:Variant.Tedy.15447
McAfee	Artemis!A22E94DA9A04
Zillya	Trojan.Agent.Win32.2524098
BitDefender	Gen:Variant.Tedy.15447
Avast	Win32:PUP-gen [PUP]
Sophos	Generic ML PUA (PUA)
McAfee-GW-Edition	BehavesLike.Win32.BadFile.ch
SentinelOne	Static AI – Malicious PE
Emsisoft	Gen:Variant.Tedy.15447 (B)
GData	Gen:Variant.Tedy.15447
Microsoft	Trojan:Win32/Wacatac.B!ml
VBA32	suspected of Trojan.Downloader.gen
ALYac	Gen:Variant.Tedy.15447
MAX	malware (ai score=82)
Fortinet	Riskware/Application
AVG	Win32:PUP-gen [PUP]

How to remove Tedy.15447 (B)?

Tedy.15447 (B) removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X