About “Tedy.61150” infection

The Tedy.61150 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Tedy.61150 virus can do?

The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid
Anomalous binary characteristics

How to determine Tedy.61150?


File Info:
name: 9429774B54FFC24C327B.mlw
path: /opt/CAPEv2/storage/binaries/d2f81a672c452d7ac747fb8a1ec374a2a271003862d6787084aa7b3c47b3a7a2
crc32: 9967E0BF
md5: 9429774b54ffc24c327bc5604c802c2d
sha1: 3a5d4ad7805dbf4af8a98a283c595445f12a7c3e
sha256: d2f81a672c452d7ac747fb8a1ec374a2a271003862d6787084aa7b3c47b3a7a2
sha512: a89b41c31cb79425fe70f5795aee2dc39769aa6f2a59740818880fd9f8ecce5fb9ed1f2604689a63473fd32d0bee90958dbb6f7aefd74c2f22aa7df2a8604aad
ssdeep: 49152:1pwBSSCwnNTBALnHFLHkJERCIabjKoh9WPCIabjKoh9Wr8xmN3Aek03noj45wlD4:YBZeDoIabjKoh9WaIabjKoh9WreUJF3v
type: PE32+ executable (console) x86-64, for MS Windows
tlsh: T1CCC56C1267909E32D56A02B378E9A3635DE97DE14422431BF7447F2D9B32EA06BD3313
sha3_384: ef6801dc3329320ae30dab9a377e79ad075e858346db7eb9a8f8832d9816fcc2a0362b29b241f0cd0e8ecba5bad9be95
ep_bytes: 4883ec28488d0d150a0000e8e0030000
timestamp: 1970-01-01 00:00:00

Version Info:
0: [No Data]

Tedy.61150 also known as:

Elastic	malicious (high confidence)
MicroWorld-eScan	Gen:Variant.Tedy.61150
FireEye	Generic.mg.9429774b54ffc24c
ALYac	Gen:Variant.Tedy.61150
Sangfor	Trojan.Win32.Save.a
K7AntiVirus	Riskware ( 0040eff71 )
K7GW	Riskware ( 0040eff71 )
Baidu	Win32.Trojan.VB.t
Cyren	W64/Blackie.AQ.gen!Eldorado
Symantec	Trojan.Gen.MBT
ClamAV	Win.Trojan.Blackie-9838328-0
Kaspersky	UDS:Worm.Win32.AutoRun.vx
BitDefender	Gen:Variant.Tedy.61150
Avast	Win32:VB-FBX
Ad-Aware	Gen:Variant.Tedy.61150
Sophos	Generic ML PUA (PUA)
DrWeb	Win32.HLLW.Autoruner.547
Emsisoft	Gen:Variant.Tedy.61150 (B)
Ikarus	Trojan.Win32.Vindor
GData	Gen:Variant.Tedy.61150
Jiangmin	Packed.Krap.gvud
Antiy-AVL	Trojan/Generic.ASMalwS.347F43A
Arcabit	Trojan.Tedy.DEEDE
Microsoft	Trojan:Win32/Sabsik.FL.B!ml
Cynet	Malicious (score: 100)
AhnLab-V3	Malware/Win.Generic.R456763
MAX	malware (ai score=85)
VBA32	Worm.AutoRun
Malwarebytes	Malware.AI.2797890020
Rising	Worm.VB!1.DA3E (CLASSIC)
Yandex	Trojan.GenAsa!g8z8LT30jj4
SentinelOne	Static AI – Malicious PE
MaxSecure	Trojan.Malware.121218.susgen
Fortinet	W64/Pajetbin.N!tr
BitDefenderTheta	Gen:NN.ZevbaF.34084.dq0@aSOchTbb
AVG	Win32:VB-FBX

How to remove Tedy.61150?

Tedy.61150 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X