Malware

Tedy.56987 information

Malware Removal

The Tedy.56987 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Tedy.56987 virus can do?

  • Presents an Authenticode digital signature
  • Authenticode signature is invalid
  • Anomalous binary characteristics

How to determine Tedy.56987?



File Info:

name: 292B0B09006110288BE0.mlw
path: /opt/CAPEv2/storage/binaries/f11a42d3ee716f6b47b6525a0e0ca420f34d6d3077025a72e596a173472ae6ae
crc32: BD9FF4C6
md5: 292b0b09006110288be0f9dd9db332a1
sha1: f6553e8210288fa2a96f058b1c8a69d111f26876
sha256: f11a42d3ee716f6b47b6525a0e0ca420f34d6d3077025a72e596a173472ae6ae
sha512: c73a7dd661bf61981e9ea777afca5f27a51cc18242dfffd32d5ab05b349898b17f26bb2da26af9004b552e6746a409cf9d30ad7b92d1309bc98a0bd6dd883a98
ssdeep: 12288:hca9KSBCnzbkP8KmCOrpfU5lCAwSfxL/2Dc3jDLLmt0LDQewsAjRPc37QVbo7JVp:ONvP5rpfU5lHaewsAjFyMbo7JXT
type: PE32+ executable (console) x86-64, for MS Windows
tlsh: T19115AE21FB74C8F5C577057546A6CB16AA75B8210B20CAC7F3A8876E1F232D06F39B16
sha3_384: bba1e2d06c4ab84b56ec4493585faa719ba1aa9174d6361dc738304dfa727c363ff0af8974a0e81590596fe18f560bd7
ep_bytes: 4883ec28e8370300004883c428e92afe
timestamp: 1970-04-14 09:36:10


Version Info:

CompanyName: Microsoft Corporation
FileDescription: Microsoft Security Client Policy Configuration Tool
FileVersion: 4.13.17134.1 (WinBuild.160101.0800)
InternalName: ConfigSecurityPolicy.exe
LegalCopyright: © Microsoft Corporation. All rights reserved.
OriginalFilename: ConfigSecurityPolicy.exe
ProductName: Microsoft® Windows® Operating System
ProductVersion: 4.13.17134.1
Translation: 0x0409 0x04b0

Tedy.56987 also known as:

Elasticmalicious (high confidence)
ClamAVWin.Ransomware.WannaCry-9856297-0
FireEyeGen:Variant.Tedy.56987
McAfeeRDN/Autorun.worm.gen
CyrenW32/Mikey.BI.gen!Eldorado
CynetMalicious (score: 100)
BitDefenderGen:Variant.Tedy.56987
MicroWorld-eScanGen:Variant.Tedy.56987
AvastWin32:VB-FBX
Ad-AwareGen:Variant.Tedy.56987
EmsisoftGen:Variant.Tedy.56987 (B)
DrWebWin32.HLLW.Autoruner.547
McAfee-GW-EditionRDN/Autorun.worm.gen
SophosGeneric ML PUA (PUA)
GDataGen:Variant.Tedy.56987
MAXmalware (ai score=86)
APEXMalicious
MicrosoftTrojan:Win32/Wacatac.B!ml
VBA32Worm.AutoRun
ALYacGen:Variant.Tedy.56987
MalwarebytesMalware.AI.3696146603
IkarusTrojan.Dropper
MaxSecureTrojan.Malware.121218.susgen
FortinetW64/Autorun.BJD!tr
AVGWin32:VB-FBX
CrowdStrikewin/malicious_confidence_60% (W)

How to remove Tedy.56987?

Tedy.56987 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment