Malware

About “Zusy.322186 (B)” infection

Malware Removal

The Zusy.322186 (B) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Zusy.322186 (B) virus can do?

  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • CAPE extracted potentially suspicious content
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • CAPE detected the RedLine malware family
  • Anomalous binary characteristics

How to determine Zusy.322186 (B)?



File Info:

name: E674964B64487EF46C30.mlw
path: /opt/CAPEv2/storage/binaries/f878bfa538aeccf8762ef2384f11982d193e715d5006f798b29c4d16ee8c35c1
crc32: 0F28261B
md5: e674964b64487ef46c3011af065405b1
sha1: bd2376c12aaf189a4dfe13cc43581069e5fb48cb
sha256: f878bfa538aeccf8762ef2384f11982d193e715d5006f798b29c4d16ee8c35c1
sha512: 1f6c2d25e9fd4e0062337b18970f9300b549d31ce676975944701e508496f291b8175badf488a14c998a6045909365708b5b0135d46ef9f105c9d4eddeb63c3e
ssdeep: 12288:Zh1Lk70TnvjcqeKsYtRwhlB6BhmCXeGuR3ifGH/dDKJEtqyLIPg98DT:Fk70Trcq2eRwz4PsNR3if2dTt7mgqDT
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T131E4AC392168A17EE062003244B1CD3E57E72C6236597B9EFED41E9B3510BD361B29BF
sha3_384: e3eb9482765eab356882b3687bb9498aa27366471d109873bab869f2b985ee5cd34a481a9e981cc8b5876a983f406692
ep_bytes: e8e15c0000e9a4feffff8bff558bec83
timestamp: 2012-07-13 22:47:16


Version Info:

Translation: 0x0000 0x04b0
Comments: SteelStones
CompanyName: GameCenter
FileDescription: GameCenter
FileVersion: 1.0.0.0
InternalName: GameCenter.exe
LegalCopyright: SteelStones Copyright ©  2020
LegalTrademarks: GameCenter
OriginalFilename: GameCenter.exe
ProductName: GameCenter
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

Zusy.322186 (B) also known as:

LionicHeuristic.File.Generic.00×1!p
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Zusy.322186
FireEyeGeneric.mg.e674964b64487ef4
McAfeeGenericRXNI-SO!E674964B6448
CylanceUnsafe
VIPREGen:Variant.Zusy.322186
SangforTrojan.Win32.Save.a
AlibabaTrojan:MSIL/Symmi.d3565e6b
Cybereasonmalicious.b64487
CyrenW32/Symmi.O.gen!Eldorado
SymantecML.Attribute.HighConfidence
tehtrisGeneric.Malware
APEXMalicious
Paloaltogeneric.ml
KasperskyHEUR:Trojan.MSIL.Crypt.vho
BitDefenderGen:Variant.Zusy.322186
AvastWin32:Malware-gen
TencentMsil.Trojan.Crypt.Akeu
Ad-AwareGen:Variant.Zusy.322186
SophosMal/Generic-S
ComodoMalware@#2fl7pr07mhhzv
ZillyaTrojan.Crypt.Win32.68981
TrendMicroTROJ_GEN.R007C0PFS22
McAfee-GW-EditionGenericRXNI-SO!E674964B6448
Trapminemalicious.high.ml.score
EmsisoftGen:Variant.Zusy.322186 (B)
GDataGen:Variant.Zusy.322186
GoogleDetected
MAXmalware (ai score=80)
Antiy-AVLTrojan/Generic.ASMalwS.5406
ArcabitTrojan.Zusy.D4EA8A
MicrosoftBackdoor:Win32/Bladabindi!ml
CynetMalicious (score: 100)
AhnLab-V3Trojan/Win32.Wacatac.R353906
BitDefenderThetaGen:NN.ZexaF.34606.Qq0@a8l7cLg
ALYacGen:Variant.Zusy.322186
VBA32Trojan.MSIL.Crypt
MalwarebytesGeneric.Malware/Suspicious
TrendMicro-HouseCallTROJ_GEN.R007C0PFS22
RisingTrojan.Generic@AI.100 (RDML:Bust0oW//yz7OJB0NsJzgA)
YandexTrojan.Crypt!zpTD6MM02iI
SentinelOneStatic AI – Malicious PE
MaxSecureTrojan.Malware.73759215.susgen
FortinetW32/GenericRXNI.SO!tr
AVGWin32:Malware-gen
PandaTrj/CI.A
CrowdStrikewin/malicious_confidence_60% (W)

How to remove Zusy.322186 (B)?

Zusy.322186 (B) removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment