How to remove “Tedy.290423”?

The Tedy.290423 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Tedy.290423 virus can do?

CAPE extracted potentially suspicious content
Authenticode signature is invalid

How to determine Tedy.290423?


File Info:
name: C34E9487AF7CED8BF08D.mlw
path: /opt/CAPEv2/storage/binaries/85de09b2cc956a1746dbd10531bb31ebfa59a6b1eb73ba6a62ea1befad8eb21c
crc32: 7452675F
md5: c34e9487af7ced8bf08d8c046c6abb0a
sha1: 731b75a6b51f0faafea3eeaccadec6b832b4e5fc
sha256: 85de09b2cc956a1746dbd10531bb31ebfa59a6b1eb73ba6a62ea1befad8eb21c
sha512: 6cc77c1265d3214c5c20be6ce8948c70e1f2a5034adc0092514ced109135eacb49779115c0604c65b4a5da0b14731c914283b459a1aa8e2d6b2221907b83c094
ssdeep: 3072:eIERggrQynM1zh9xm1BbBab6LmbDLbk4904leeZrbve:ezggbnMdh9CVab6Lmbb990rsr
type: PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
tlsh: T12F04F71A73A14F51C34429B5C0E7452003EAEA87B237DB8E3E9523955C46BFACD993CE
sha3_384: 3c70cd59114fa6360ae70186953e5dd8adba7ae346d64eed8bbf35f5f3cad5a3c68b0c4af323578d09d66e5a8aca7e88
ep_bytes: ff250020400000000000000000000000
timestamp: 2023-02-07 05:44:07

Version Info:
Translation: 0x0000 0x04b0
Comments: 
CompanyName: 
FileDescription: 
FileVersion: 1.0.0.0
InternalName: Dobqfgasdeiginhgsknhovgf.dll
LegalCopyright: Copyright © 2021
LegalTrademarks: 
OriginalFilename: Dobqfgasdeiginhgsknhovgf.dll
ProductName: 
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

Tedy.290423 also known as:

Lionic	Trojan.Win32.ClipBanker.Z!c
Elastic	malicious (moderate confidence)
MicroWorld-eScan	Gen:Variant.Tedy.290423
Skyhigh	Artemis!Trojan
McAfee	Artemis!C34E9487AF7C
Cylance	unsafe
Zillya	Trojan.Exnet.Win32.644
Sangfor	Banker.Msil.Clipbanker.V142
CrowdStrike	win/malicious_confidence_100% (W)
Alibaba	Trojan:MSIL/ClipBanker.01870d13
K7GW	Trojan ( 0059e4a21 )
K7AntiVirus	Trojan ( 0059e4a21 )
Arcabit	Trojan.Tedy.D46E77
Symantec	Trojan.Gen.MBT
ESET-NOD32	a variant of MSIL/ClipBanker.AEN
APEX	Malicious
Kaspersky	HEUR:Trojan.MSIL.Agent.gen
BitDefender	Gen:Variant.Tedy.290423
Avast	Win32:InjectorX-gen [Trj]
Tencent	Msil.Trojan.Agent.Jajl
Emsisoft	Gen:Variant.Tedy.290423 (B)
VIPRE	Gen:Variant.Tedy.290423
Sophos	Mal/Generic-S
Varist	W32/MSIL_Kryptik.IOG.gen!Eldorado
Antiy-AVL	Trojan/MSIL.ClipBanker
Microsoft	Trojan:Win32/Wacatac.B!ml
ZoneAlarm	HEUR:Trojan.MSIL.Agent.gen
GData	Gen:Variant.Tedy.290423
Google	Detected
Malwarebytes	Trojan.Clipper.MSIL
Panda	Trj/Chgt.AD
TrendMicro-HouseCall	TROJ_GEN.R002H0CAA24
Ikarus	Malware.Win32.PureMiner
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	MSIL/ClipBanker.AEN!tr
AVG	Win32:InjectorX-gen [Trj]
DeepInstinct	MALICIOUS

How to remove Tedy.290423?

Tedy.290423 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X