Malware

Tedy.60246 (B) (file analysis)

Malware Removal

The Tedy.60246 (B) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Tedy.60246 (B) virus can do?

  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • Dynamic (imported) function loading detected
  • Presents an Authenticode digital signature
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid
  • Anomalous binary characteristics

How to determine Tedy.60246 (B)?



File Info:

name: 4E854847E0110A40D74D.mlw
path: /opt/CAPEv2/storage/binaries/994dee249fff2e3e2966b71e77e4f9f5d2eb7f03e620f184b9bc67d6961197c3
crc32: 6F6F09D9
md5: 4e854847e0110a40d74d1aa72f2ef487
sha1: 7505403a0d74259ffd69ce6f5d8410bdb7c3bcb2
sha256: 994dee249fff2e3e2966b71e77e4f9f5d2eb7f03e620f184b9bc67d6961197c3
sha512: a6fd9baea5898f62ac6423d951268364d06914a707b71c887ee9fe79186319dc0b0345224bfb4f7985330f9ec63cc576d421ba5656fbc4e94e2fd17d99284a64
ssdeep: 6144:Zpc3T8T6VH76l4gMuu++B+4cMSgLY7xACEL/Ubd:MjC6V2lYi+B+4cMSICACm/Ub
type: PE32+ executable (GUI) x86-64, for MS Windows
tlsh: T105549E03B3E058E5E072463049B1D6209B7AFD211B608BEF2394576E1F767C1AE39F66
sha3_384: d24c7381a8f9ba7f44ac2bc4e7a121e23faff0c9788114f53b8d5189254abcc741100fba9ef02cade69cacce4e77ed3f
ep_bytes: 4883ec28e85b0200004883c428e97afe
timestamp: 2021-08-11 22:26:42


Version Info:

CompanyName: Microsoft Corporation
FileDescription: Microsoft Edge
FileVersion: 92.0.902.73
InternalName: cookie_exporter_exe
LegalCopyright: Copyright Microsoft Corporation. All rights reserved.
OriginalFilename: cookie_exporter.exe
ProductName: Microsoft Edge
ProductVersion: 92.0.902.73
CompanyShortName: Microsoft
ProductShortName: Microsoft Edge
LastChange: cad199e39220991414cd71868a619fff614880c7
Official Build: 1
Translation: 0x0409 0x04b0

Tedy.60246 (B) also known as:

Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Tedy.60246
FireEyeGen:Variant.Tedy.60246
ALYacGen:Variant.Tedy.60246
CylanceUnsafe
CyrenW64/Bulz.BT.gen!Eldorado
TrendMicro-HouseCallTROJ_GEN.R03BH09L721
BitDefenderGen:Variant.Tedy.60246
Ad-AwareGen:Variant.Tedy.60246
McAfee-GW-EditionBehavesLike.Win64.BadFile.dh
EmsisoftGen:Variant.Tedy.60246 (B)
IkarusTrojan.Msil
GDataGen:Variant.Tedy.60246
Antiy-AVLTrojan/Generic.ASMalwS.349521C
MicrosoftTrojan:Win32/Sabsik.FL.B!ml
CynetMalicious (score: 100)
McAfeeArtemis!4E854847E011
MAXmalware (ai score=83)
APEXMalicious
FortinetW64/Bulz.BT!tr
CrowdStrikewin/malicious_confidence_70% (W)
MaxSecureTrojan.Malware.121218.susgen

How to remove Tedy.60246 (B)?

Tedy.60246 (B) removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment