Malware

What is “Zusy.312105”?

Malware Removal

The Zusy.312105 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Zusy.312105 virus can do?

  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid

How to determine Zusy.312105?



File Info:

name: D0A79BCE16647188E9BE.mlw
path: /opt/CAPEv2/storage/binaries/bc22bddaebd28f6b078cebb26987cf122125436c20b7e04c35fef11656bdc09e
crc32: 66923572
md5: d0a79bce16647188e9befb1437fcdcb0
sha1: cab4fee5325086eb5f6ec2f723aaf956ab1b04bd
sha256: bc22bddaebd28f6b078cebb26987cf122125436c20b7e04c35fef11656bdc09e
sha512: ab25bebd72c4d234f034925077bc9e0a382bcc11c9f954092bcabf88a64c0bc753ed460116219cbc6547cf94fa3d82d7f92ee0a488f96101b2d2c58616a5d757
ssdeep: 6144:ZsOkuvvaHb2xnSrG9u2XBvg9ySF4NNhqB/jAtzfhn:ZLvvaHbl2BY9HF4gaT9
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T11954CFB1E28CD668C27FE671C8BD9D2316BB6CED9A74450EF7B5342D86333450828B16
sha3_384: 2fb89a69e5106dbc0b74137bfd622b1e84968e48ef092936ede82b7170203c6dc61136797bb4f0d5ef9687050c8b93c8
ep_bytes: e842090000e963fdffff8bff558bec81
timestamp: 2019-12-11 10:18:20


Version Info:

CompanyName: Oracle Corporation
FileDescription: Java Control Panel
FileVersion: 11.241.2.07
Full Version: 11.241.2.07
InternalName: Java Control Panel
LegalCopyright: Copyright © 2019
OriginalFilename: javacpl.exe
ProductName: Java(TM) Platform SE 8 U241
ProductVersion: 8.0.2410.7
Translation: 0x0409 0x04b0

Zusy.312105 also known as:

BkavW32.AIDetectMalware
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Zusy.312105
Cylanceunsafe
SangforSuspicious.Win32.Save.a
APEXMalicious
BitDefenderGen:Variant.Zusy.312105
NANO-AntivirusVirus.Win32.Gen-Crypt.ccnc
AvastWin32:Malware-gen
EmsisoftGen:Variant.Zusy.312105 (B)
VIPREGen:Variant.Zusy.312105
Trapminesuspicious.low.ml.score
FireEyeGeneric.mg.d0a79bce16647188
GDataGen:Variant.Zusy.312105
Antiy-AVLGrayWare/Win32.Wacapew
ArcabitTrojan.Zusy.D4C329
MicrosoftTrojan:Win32/Wacatac.B!ml
ALYacGen:Variant.Zusy.312105
MAXmalware (ai score=83)
VBA32BScope.Trojan.Meterpreter
AVGWin32:Malware-gen
DeepInstinctMALICIOUS
CrowdStrikewin/malicious_confidence_70% (D)

How to remove Zusy.312105?

Zusy.312105 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment