Malware

Zusy.317262 removal

Malware Removal

The Zusy.317262 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Zusy.317262 virus can do?

  • Executable code extraction
  • Attempts to connect to a dead IP:Port (1 unique times)
  • Creates RWX memory
  • At least one IP Address, Domain, or File Name was found in a crypto call
  • Reads data out of its own binary image
  • A process created a hidden window
  • Drops a binary and executes it
  • The binary likely contains encrypted or compressed data.
  • Uses Windows utilities for basic functionality
  • Attempts to create or modify system certificates
  • Creates a slightly modified copy of itself

Related domains:

get.adobe.com

How to determine Zusy.317262?



File Info:

crc32: 439D7ECB
md5: 1dc4fa4ef99b6b0be35af8974acf7fda
name: 1DC4FA4EF99B6B0BE35AF8974ACF7FDA.mlw
sha1: 09dbd8c611137789b94962ae6f8f631c1222ba48
sha256: ab97165e0033b17dacd5aab4a42a63670480e387e104c98b3bf93ffa7c729882
sha512: 1c71894ff5c02f1e94b072af81194a7d681cbb987ca655cedf41236747d5b318f3e8cbb296077c0ba46b82e4fcc2e5d72e29d5d8878f3da46c8b2078173a0019
ssdeep: 49152:H3PxMAJI2ypcjXv/ZzfS1zQtHlsim4zMoYeOLM9LyaBr1ccP7rENxefMN:H/qAVy6nc1zQ9hmmYK9zKAc0MN
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright: Copyright 2015 Adobe Systems Incorporated. All rights reserved.
InternalName: Adobe Download Manager
FileVersion: 2.0.0.46s
CompanyName: Adobe Systems Incorporated
ProductName: Adobe Download Manager
ProductVersion: 2.0.0.46s
FileDescription: Adobe Download Manager
OriginalFilename: Adobe Download Manager
Translation: 0x0409 0x04b0

Zusy.317262 also known as:

BkavW32.AIDetectVM.malware1
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Zusy.317262
FireEyeGeneric.mg.1dc4fa4ef99b6b0b
CAT-QuickHealTrojan.Mauvaise.SL1
McAfeeGenericRXGY-UW!1DC4FA4EF99B
CylanceUnsafe
SangforMalware
K7AntiVirusTrojan ( 004e16831 )
BitDefenderGen:Variant.Zusy.317262
K7GWTrojan ( 004e16831 )
Cybereasonmalicious.ef99b6
TrendMicroTROJ_GEN.R002C0DKH20
BitDefenderThetaGen:NN.ZexaF.34634.ws0@a4!a@hii
CyrenW32/Agent.AVQ.gen!Eldorado
SymantecML.Attribute.HighConfidence
APEXMalicious
AvastWin32:Trojan-gen
ClamAVWin.Malware.Bskd-9753126-0
KasperskyHEUR:Backdoor.Win32.Generic
AlibabaBackdoor:Win32/Salgorea.a0da99dc
NANO-AntivirusTrojan.Win32.Agent.dxkpnp
TencentWin32.Trojan.Jaik.Ecky
Ad-AwareGen:Variant.Zusy.317262
TACHYONTrojan-Dropper/W32.Agent.2458624.B
EmsisoftGen:Variant.Zusy.317262 (B)
ComodoTrojWare.Win32.Salgorea.RHG@7yqza3
F-SecureHeuristic.HEUR/AGEN.1113070
DrWebTrojan.Siggen8.7814
InvinceaMal/Generic-S
McAfee-GW-EditionBehavesLike.Win32.Generic.vc
SophosMal/Generic-S
IkarusTrojan.Win32.Salgorea
JiangminTrojanDropper.Agent.cecy
MaxSecureTrojan.Malware.300983.susgen
AviraHEUR/AGEN.1113070
MicrosoftTrojan:Win32/Salgorea.VRR!MTB
ArcabitTrojan.Zusy.D4D74E
ZoneAlarmHEUR:Backdoor.Win32.Generic
GDataGen:Variant.Zusy.317262
CynetMalicious (score: 100)
AhnLab-V3Dropper/Win32.Agent.C3367002
Acronissuspicious
VBA32BScope.Trojan.MulDrop
ALYacGen:Variant.Zusy.317262
MAXmalware (ai score=80)
PandaTrj/Genetic.gen
ESET-NOD32a variant of Win32/TrojanDropper.Agent.SFT
TrendMicro-HouseCallTROJ_GEN.R002C0DKH20
RisingTrojan.Agent!1.B332 (CLASSIC)
YandexTrojan.GenAsa!ykJlBo8qQNU
SentinelOneStatic AI – Suspicious PE
eGambitUnsafe.AI_Score_99%
FortinetW32/Agent.SFT!tr
AVGWin32:Trojan-gen
CrowdStrikewin/malicious_confidence_100% (D)
Qihoo-360Win32/Backdoor.d55

How to remove Zusy.317262?

Zusy.317262 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment