Malware

Tedy.196335 (file analysis)

Malware Removal

The Tedy.196335 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Tedy.196335 virus can do?

  • CAPE extracted potentially suspicious content
  • Authenticode signature is invalid

How to determine Tedy.196335?



File Info:

name: 305AAFFCE784D68963FE.mlw
path: /opt/CAPEv2/storage/binaries/d230f4e30897e2e06c97a1637ec0e498b257e77b1a1b7054aa046e5da256856e
crc32: A5F67AB6
md5: 305aaffce784d68963fee660fe0c3ea0
sha1: 9195561b53a950714aa84f59063354e8b625d431
sha256: d230f4e30897e2e06c97a1637ec0e498b257e77b1a1b7054aa046e5da256856e
sha512: f138a182d3d46b23ae08269d02dddb33309dff9ddfd1bcc1a2d06342b2e3756ec3565652137630b57ae49f070c875868093622e096eb9e17d0b11021542f3e92
ssdeep: 192:Al5cCTVYCLEAuODG7NqLLJP5odwyGtom:AT/T5wAnDoNqHJP5oGo
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1DB22F791A7D6C236DEBE4FB548B343805B77F3064C92EF6FE9D8005A4D323984B81A90
sha3_384: 3e358a9dacbedecb8a9bcdc0dc16812fcc18d1593a1ab12d9d0a95b54c446dabf2ca8842a7d5a7dd3639e9fe199e0aee
ep_bytes: ff250020400000000000000000000000
timestamp: 2022-08-02 09:02:27


Version Info:

Translation: 0x0000 0x04b0
Comments: n[mOIYJIJBa@VGPXCWldD@VCBCUx[OXICZÖÓåÇÁÑÂÁÂÚùØÎßÈÀۇ¼”´°¦³²³¥ˆ«¿¨¹³ª
CompanyName: Ž»¯©¹ª©ª¢ ¶§°¸£Ž»¯©¹ª©ª¢ ¶§°¸£’¯™»½•†…†–µ”‚›Œ„Ÿ¢Ÿ©‹…–•–†¥„’‹œ”¢Ÿ©‹…–•–†¥„’‹œ”
FileDescription: Ž»¯©¹ª©ª¢ ¶§°¸£Ž»¯©¹ª©ª¢ ¶§°¸£’¯™»½•†…†–µ”‚›Œ„Ÿ¢Ÿ©‹…–•–†¥„’‹œ”¢Ÿ©‹…–•–†¥„’‹œ”
FileVersion: 1.0.0.0
InternalName: ZGxReports.exe
LegalCopyright: Ž»¯©¹ª©ª¢ ¶§°¸£Ž»¯©¹ª©ª¢ ¶§°¸£’¯™»½•†…†–µ”‚›Œ„Ÿ¢Ÿ©‹…–•–†¥„’‹œ”¢Ÿ©‹…–•–†¥„’‹œ”
OriginalFilename: ZGxReports.exe
ProductName: Ž»¯©¹ª©ª¢ ¶§°¸£Ž»¯©¹ª©ª¢ ¶§°¸£’¯™»½•†…†–µ”‚›Œ„Ÿ¢Ÿ©‹…–•–†¥„’‹œ”¢Ÿ©‹…–•–†¥„’‹œ”
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

Tedy.196335 also known as:

BkavW32.AIDetectNet.01
Elasticmalicious (high confidence)
CynetMalicious (score: 100)
FireEyeGeneric.mg.305aaffce784d689
BitDefenderThetaGen:NN.ZemsilF.34646.am0@aKmAHOb
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of MSIL/Spy.Agent.CVW
BitDefenderGen:Variant.Tedy.196335
MicroWorld-eScanGen:Variant.Tedy.196335
APEXMalicious
Ad-AwareGen:Variant.Tedy.196335
EmsisoftGen:Variant.Tedy.196335 (B)
DrWebTrojan.PWS.StealerNET.110
VIPREGen:Variant.Tedy.196335
GDataGen:Variant.Tedy.196335
MAXmalware (ai score=86)
ArcabitTrojan.Tedy.D2FEEF
MicrosoftTrojan:Win32/Wacatac.H!ml
ALYacGen:Variant.Tedy.196335
RisingTrojan.Generic/MSIL@AI.95 (RDM.MSIL:VTs9fIA0qgiS4Av2J/1Bww)
SentinelOneStatic AI – Suspicious PE

How to remove Tedy.196335?

Tedy.196335 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment