How to remove “Tedy.346841”?

The Tedy.346841 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Tedy.346841 virus can do?

Authenticode signature is invalid
Anomalous .NET characteristics

How to determine Tedy.346841?


File Info:
name: 41B2380B454CFA680B4D.mlw
path: /opt/CAPEv2/storage/binaries/073731fa5a5ef41b39784ec7db9846f1286d7000add6c0b5dd20357c81e23456
crc32: C792CF0B
md5: 41b2380b454cfa680b4d2b30440e8109
sha1: f767fbbf9ddeb69c69d0cde4927957647e8a019d
sha256: 073731fa5a5ef41b39784ec7db9846f1286d7000add6c0b5dd20357c81e23456
sha512: a2600fd86158ef8481c18acf1a74c961058b4fbf1e9461294eb39475e634fbbcdea1f60b28cbc8669cd7be17f6406743834b137f44169c3a455f7551d7164421
ssdeep: 12288:opUCj2KN8HnbttOCHfVNWDO2wF6edg0ASy0EPmLUd0btZcodN2BOjDyhC:opUCjobH9kDPww0QSyk0FhC
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T114D5037D3DFA2A33D2A9E6F9CBD09433F11491B33613652A218667A55347E8AB0C317C
sha3_384: 38e315163a934e583d548483cef0237b132330617b5da105b410b811f1163491d5f554528e91c00ac25dbb4b658338e6
ep_bytes: ff250020400000000000000000000000
timestamp: 2023-02-26 14:33:17

Version Info:
Translation: 0x0000 0x04b0
CompanyName: FACEIT Ltd.
FileDescription: Setup.exe
FileVersion: 1.31.12
InternalName: sufficient.exe
LegalCopyright: Copyright © 2023 FACEIT Ltd.
OriginalFilename: sufficient.exe
ProductName: FACEIT Client
ProductVersion: 1.31.12
Assembly Version: 0.0.0.0

Tedy.346841 also known as:

Lionic	Trojan.Win32.Heracles.4!c
MicroWorld-eScan	Gen:Variant.Tedy.346841
FireEye	Generic.mg.41b2380b454cfa68
ALYac	Gen:Variant.Tedy.346841
Malwarebytes	Trojan.Crypt.MSIL
Sangfor	Suspicious.Win32.Save.a
Alibaba	TrojanSpy:MSIL/Stealer.b860b403
CrowdStrike	win/malicious_confidence_100% (W)
Elastic	malicious (high confidence)
ESET-NOD32	a variant of MSIL/Injector.WFE
APEX	Malicious
Paloalto	generic.ml
Cynet	Malicious (score: 100)
Kaspersky	HEUR:Trojan-Spy.MSIL.Stealer.gen
BitDefender	Gen:Variant.Tedy.346841
Avast	Win32:Trojan-gen
Tencent	Msil.Trojan-Spy.Stealer.Rzfl
Sophos	Mal/Generic-S
F-Secure	Trojan.TR/Kryptik.cpxer
VIPRE	Gen:Variant.Tedy.346841
TrendMicro	TrojanSpy.Win32.REDLINE.YXDB1Z
McAfee-GW-Edition	Artemis!Trojan
Emsisoft	Gen:Variant.Tedy.346841 (B)
SentinelOne	Static AI – Suspicious PE
GData	Gen:Variant.Tedy.346841
Avira	TR/Kryptik.cpxer
Antiy-AVL	Trojan/MSIL.GenKryptik
Arcabit	Trojan.Tedy.D54AD9
ZoneAlarm	HEUR:Trojan-Spy.MSIL.Stealer.gen
Microsoft	Trojan:Win32/Wacatac.B!ml
McAfee	Artemis!41B2380B454C
MAX	malware (ai score=80)
VBA32	Trojan.MSIL.DiscoStealer.Heur
Cylance	unsafe
Panda	Trj/Chgt.AD
TrendMicro-HouseCall	TrojanSpy.Win32.REDLINE.YXDB1Z
Rising	Malware.Obfus/MSIL@AI.91 (RDM.MSIL2:Q8GfsC3XbKxSTxMKLUYc5Q)
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	PossibleThreat.MU
BitDefenderTheta	Gen:NN.ZemsilF.36196.2o0@aSiRjWm
AVG	Win32:Trojan-gen
Cybereason	malicious.f9ddeb
DeepInstinct	MALICIOUS

How to remove Tedy.346841?

Tedy.346841 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X