Malware

Tedy.56860 information

Malware Removal

The Tedy.56860 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware - Review 2020

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
6-day free trial available.

What Tedy.56860 virus can do?

  • Authenticode signature is invalid
  • Anomalous .NET characteristics
  • Anomalous binary characteristics

How to determine Tedy.56860?


File Info:

name: 684D3021920DCC2B6872.mlw
path: /opt/CAPEv2/storage/binaries/5f9a098e60ed9a0e691cec3cb856a8761577d3a1ceb7b483543cebf62117d214
crc32: 49F04C70
md5: 684d3021920dcc2b6872dcf753a3b3f6
sha1: 4d7511040b46dcbf36a1374ca12f5df05eb830b1
sha256: 5f9a098e60ed9a0e691cec3cb856a8761577d3a1ceb7b483543cebf62117d214
sha512: bf3fd852e16953ba27e9489949c450934a0dea230f2f1a9a1c7528ca60ad8f9cb646863f26559804136dbdc52393e78ee4047571db74a7b8b74898d7c4778407
ssdeep: 96:c3HfdonTuHjv5GTZSYw792+ab3CVCXTFytjlEshpGRvRxNXYPRTIoDeNViPWwOgv:cPdqs50E792+A3fjFajxhcrNXYlogWu
type: PE32+ executable (GUI) x86-64, for MS Windows
tlsh: T1E412C51077F98618F5FF4F752CB176205136F7875A52D2AF1C85409A2C32A50CB92BBB
sha3_384: ce97ecccfee52ba3be433ebd138c217cd175e8ba4324ad11179671be750371d97ced6d67488fc70ad5cde30d6ba7cc20
ep_bytes: 4d5a90000300000004000000ffff0000
timestamp: 2021-12-06 11:36:56

Version Info:

Translation: 0x0000 0x04b0
Comments: Shell Infrastructure Host
FileDescription: Shell Infrastructure Host
FileVersion: 10.0.19041.746
InternalName: un-watchdog.exe
LegalCopyright: © Microsoft Corporation. All Rights Reserved.
OriginalFilename: un-watchdog.exe
ProductName: Microsoft® Windows® Operating System
ProductVersion: 10.0.19041.746
Assembly Version: 0.0.0.0

Tedy.56860 also known as:

LionicTrojan.MSIL.Bladabindi.m!c
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Tedy.56860
ALYacGen:Variant.Tedy.56860
CylanceUnsafe
K7AntiVirusTrojan ( 0057f9af1 )
AlibabaBackdoor:Win32/Bladabindi.2f99389d
K7GWTrojan ( 0057f9af1 )
CyrenW64/MSIL_Coinminer.C.gen!Eldorado
SymantecTrojan.Gen.MBT
ESET-NOD32a variant of Win32/CoinMiner.CGV
APEXMalicious
Paloaltogeneric.ml
KasperskyHEUR:Backdoor.MSIL.Bladabindi.gen
BitDefenderGen:Variant.Tedy.56860
AvastWin64:CoinminerX-gen [Trj]
TencentTrojan.Win64.BitCoinMiner.16000099
Ad-AwareGen:Variant.Tedy.56860
SophosMal/Generic-S
F-SecureHeuristic.HEUR/AGEN.1143071
TrendMicroTROJ_GEN.R002C0WL621
McAfee-GW-EditionArtemis!Trojan
FireEyeGeneric.mg.684d3021920dcc2b
EmsisoftGen:Variant.Tedy.56860 (B)
IkarusTrojan.Win32.CoinMiner
GDataGen:Variant.Tedy.56860
WebrootW32.Trojan.Dropper
AviraHEUR/AGEN.1143071
ArcabitTrojan.Tedy.DDE1C
MicrosoftTrojan:Win32/Sabsik.FL.B!ml
CynetMalicious (score: 99)
AhnLab-V3Trojan/Win.Generic.C4785167
McAfeeArtemis!684D3021920D
MAXmalware (ai score=84)
TrendMicro-HouseCallTROJ_GEN.R002C0WL621
SentinelOneStatic AI – Malicious PE
FortinetMSIL/CoinMiner.CGV!tr
AVGWin64:CoinminerX-gen [Trj]
CrowdStrikewin/malicious_confidence_100% (W)
MaxSecureTrojan.Malware.300983.susgen

How to remove Tedy.56860?

Tedy.56860 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment