About “Tedy.224893” infection

The Tedy.224893 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Tedy.224893 virus can do?

The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid

How to determine Tedy.224893?


File Info:
name: EBE7C8A19F23621BA3F6.mlw
path: /opt/CAPEv2/storage/binaries/8410c0d883e9d413fcb010b46a5e4e392c2a850efd1ebb5e302746b6e65146e6
crc32: 7E3A9846
md5: ebe7c8a19f23621ba3f6bcb0c4176c27
sha1: 3f43826a813d2d193cd2f186a96a087ee8dd802e
sha256: 8410c0d883e9d413fcb010b46a5e4e392c2a850efd1ebb5e302746b6e65146e6
sha512: cea87c9ece0fb95e55afd540cb904420ee129424eb2ad8564bb3df0a34a71ab21847af4eb73e95083d49a2e5032cb0990f12d1019a7c8c4a27c5484697584185
ssdeep: 49152:+K+WN3pNTiOZqSQ/sriOonDkWIHCKVL5XOnn6g2TeLoexODUz:+K+UTiQWnDkWzKVL5Gn6gkI
type: PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
tlsh: T15DF56C3272D4643AD06B1A3A6837D678993F7B703B15CC4B67F4094C8E355827A3A62F
sha3_384: 5eecba38efe0b48eddbb6afc535903e52833392b796c33a05a7cf1c8a2ffa6b922993c595010652344275ca01c4bf269
ep_bytes: 558bec83c4c0b8d8186e00e874fbd1ff
timestamp: 2020-03-09 03:32:41

Version Info:
0: [No Data]

Tedy.224893 also known as:

Lionic	Riskware.Win32.Generic.1!c
Elastic	malicious (high confidence)
Cynet	Malicious (score: 100)
FireEye	Generic.mg.ebe7c8a19f23621b
Skyhigh	BehavesLike.Win32.Dropper.wh
McAfee	Artemis!EBE7C8A19F23
Cylance	unsafe
VIPRE	Gen:Variant.Tedy.224893
Sangfor	Trojan.Win32.Save.a
K7AntiVirus	Spyware ( 00561c3a1 )
Alibaba	TrojanSpy:Win32/Vadokrist.084e4e02
K7GW	Spyware ( 00561c3a1 )
CrowdStrike	win/malicious_confidence_100% (W)
Arcabit	Trojan.Tedy.D36E7D
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win32/Spy.Vadokrist.T
APEX	Malicious
BitDefender	Gen:Variant.Tedy.224893
MicroWorld-eScan	Gen:Variant.Tedy.224893
Avast	Win32:MalwareX-gen [Trj]
Sophos	Mal/Generic-S
Emsisoft	Gen:Variant.Tedy.224893 (B)
SentinelOne	Static AI – Malicious PE
Google	Detected
Antiy-AVL	Trojan[Spy]/Win32.Vadokrist
Microsoft	Trojan:Win32/Wacatac.B!ml
GData	Gen:Variant.Tedy.224893
ALYac	Gen:Variant.Tedy.224893
MAX	malware (ai score=86)
Rising	Spyware.Vadokrist!8.1078C (TFE:5:shLQA6szFjL)
Ikarus	Trojan-Spy.Agent
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	W32/Vadokrist.T!tr.spy
AVG	Win32:MalwareX-gen [Trj]
DeepInstinct	MALICIOUS

How to remove Tedy.224893?

Tedy.224893 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X